Vulnerability Details : CVE-2012-0006
The DNS server in Microsoft Windows Server 2003 SP2 and Server 2008 SP2, R2, and R2 SP1 does not properly handle objects in memory during record lookup, which allows remote attackers to cause a denial of service (daemon restart) via a crafted query, aka "DNS Denial of Service Vulnerability."
Vulnerability category: Denial of service
Products affected by CVE-2012-0006
- cpe:2.3:o:microsoft:windows_server_2003:*:sp2:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2008:*:sp2:x86:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2008:*:sp2:x64:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2008:r2:*:x64:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2012-0006
95.49%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 99 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2012-0006
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:N/I:N/A:P |
10.0
|
2.9
|
NIST |
CWE ids for CVE-2012-0006
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2012-0006
-
http://secunia.com/advisories/48394
Sign in
-
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-017
Microsoft Security Bulletin MS12-017 - Important | Microsoft Docs
-
http://www.securitytracker.com/id?1026789
Microsoft DNS Server Lets Remote Users Deny Service - SecurityTracker
-
http://www.us-cert.gov/cas/techalerts/TA12-073A.html
Microsoft Updates for Multiple Vulnerabilities | CISAUS Government Resource
-
http://www.securityfocus.com/bid/52374
Microsoft Windows DNS Server (CVE-2012-0006) Remote Denial of Service Vulnerability
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15098
Repository / Oval Repository
-
http://osvdb.org/80005
Jump to