(MS13-039) Vulnerability in HTTP.sys Could Allow Denial of Service (2829254)

Publish date: May 17, 2013

CVE-2013-1305

SEVERITY

MEDIUM

//  ADVISORY DATE

17 MAY 2013


DESCRIPTION

This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow denial of service if an attacker sends a maliciously crafted HTTP packet to an affected Windows server or client.

SOLUTION

AFFECTED SOFTWARE AND VERSION

  • Windows 8 for 32-bit Systems
  • Windows 8 for 64-bit Systems
  • Windows Server 2012
  • Windows RT
  • Windows Server 2012 (Server Core installation)