Vulnerabilities > CVE-2014-1811 - Resource Management Errors vulnerability in Microsoft products

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
microsoft
CWE-399
nessus
NVD
Published: 2014-06-11
Updated: 2024-11-21

Summary

The TCP implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to cause a denial of service (non-paged pool memory consumption and system hang) via malformed data in the Options field of a TCP header, aka "TCP Denial of Service Vulnerability."

Vulnerable Configurations

Part Description Count
OS
Microsoft
11

Common Weakness Enumeration (CWE)

Msbulletin

bulletin_idMS14-031
bulletin_url
date2014-06-10T00:00:00
impactDenial of Service
knowledgebase_id2962478
knowledgebase_url
severityImportant
titleVulnerability in TCP Protocol Could Allow Denial of Service

Nessus

NASL familyWindows : Microsoft Bulletins
NASL idSMB_NT_MS14-031.NASL
descriptionThe remote Windows host is affected by a denial of service vulnerability due to the Windows TCP/IP stack improperly handling certain traffic. An attacker could exploit this vulnerability by sending a sequence of specially crafted TCP packets to cause a target system to stop responding until it is restarted.
last seen2020-06-01
modified2020-06-02
plugin id74423
published2014-06-11
reporterThis script is Copyright (C) 2014-2018 Tenable Network Security, Inc.
sourcehttps://www.tenable.com/plugins/nessus/74423
titleMS14-031: Vulnerability in TCP Protocol Could Allow Denial of Service (2962478)

References