(MS13-039) Vulnerability in HTTP.sys Could Allow Denial of Service (2829254)

  Severity: MEDIUM
  CVE Identifier: CVE-2013-1305
  Advisory Date: MAY 17, 2013

  DESCRIPTION

This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow denial of service if an attacker sends a maliciously crafted HTTP packet to an affected Windows server or client.

  SOLUTION

  AFFECTED SOFTWARE AND VERSION

  • Windows 8 for 32-bit Systems
  • Windows 8 for 64-bit Systems
  • Windows Server 2012
  • Windows RT
  • Windows Server 2012 (Server Core installation)