Buffer overflow in Microsoft Windows_server_2012

CVE-2013-3182

The Windows NAT Driver (aka winnat) service in Microsoft Windows Server 2012 does not properly validate memory addresses during the processing of ICMP packets, which allows remote attackers to cause a denial of service (memory corruption a…

Vulnerability class: Buffer Overflow

EPSS: 0.888 (99.5th percentile) — read the EPSS interpretation.

Affected products

Microsoft Windows_server_2012
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

oval:org.mitre.oval:def:18199 (x_refsource_OVAL, signature, vdb-entry)
MS13-064 (x_refsource_MS, vendor-advisory)
TA13-225A (US Government Resource, Third Party Advisory, x_refsource_CERT, third-party-advisory)