denial of service

  1. CVE-2024-38146: Critical Windows Vulnerability in Layer-2 Bridge Network Driver

    On August 13, 2024, a vulnerability identified as CVE-2024-38146 was reported, concerning the Windows Layer-2 Bridge Network Driver. This specific vulnerability poses a denial of service risk, potentially affecting the operability of systems utilizing this network driver. Given the critical...
  2. CVE-2024-38145: Critical Windows Vulnerability in Layer-2 Bridge Driver

    Overview On August 13, 2024, Microsoft published information regarding a significant vulnerability identified as CVE-2024-38145. This particular vulnerability affects the Windows Layer-2 Bridge Network Driver, posing a potential threat that could lead to a Denial of Service (DoS) condition...
  3. CVE-2024-38132: Windows NAT Denial of Service Vulnerability Explained

    CVE-2024-38132: Windows Network Address Translation (NAT) Denial of Service Vulnerability Overview The CVE-2024-38132 vulnerability is identified as a Denial of Service (DoS) vulnerability within the Windows Network Address Translation (NAT) feature. Vulnerabilities of this nature can disrupt...
  4. CVE-2024-38126: Critical NAT Vulnerability Threatens Windows Security

    In light of the recent security disclosure, the Windows community must be informed about CVE-2024-38126, a security vulnerability affecting the Network Address Translation (NAT) component in Windows systems. This announcement, published by the Microsoft Security Response Center (MSRC)...
  5. CVE-2024-38168: Critical DoS Vulnerability in .NET and Visual Studio

    CVE-2024-38168: .NET and Visual Studio Denial of Service Vulnerability Overview CVE-2024-38168 represents a critical denial of service (DoS) vulnerability that affects various components of Microsoft’s .NET framework and Visual Studio. Denial of service vulnerabilities typically enable attackers...
  6. AA20-198A: Malicious Cyber Actor Use of Network Tunneling and Spoofing to Obfuscate Geolocation

    Original release date: July 16, 2020 Summary This Activity Alert uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK™) and Pre-ATT&CK frameworks. See the MITRE ATT&CK for Enterprise and Pre-ATT&CK frameworks for referenced threat actor techniques. Attributing...
  7. AA20-183A: Defending Against Malicious Cyber Activity Originating from Tor

    Original release date: July 1, 2020 Summary This advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) and Pre-ATT&CK framework. See the ATT&CK for Enterprise and Pre-ATT&CK frameworks for referenced threat actor techniques. This advisory—written by the...
  8. 4010983 - Vulnerability in ASP.NET Core MVC 1.1.0 Could Allow Denial of Service - Version: 1.0

    Revision Note: V1.0 (January 27, 2017): Advisory published. Summary: Microsoft is releasing this security advisory to provide information about a vulnerability in the public versions of ASP.NET Core MVC 1.1.0. This advisory also provides guidance on what developers can do to update their...
  9. TA16-336A: Avalanche (crimeware-as-a-service infrastructure)

    Original release date: December 01, 2016 | Last revised: December 14, 2016 Systems Affected Microsoft Windows Overview “Avalanche” refers to a large global network hosting infrastructure used by cyber criminals to conduct phishing and malware distribution campaigns and money mule schemes...
  10. 4010983 - Vulnerability in ASP.NET Core MVC 1.1.0 Could Allow Denial of Service - Version: 1.0

    Revision Note: V1.0 (January 27, 2017): Advisory published. Summary: Microsoft is releasing this security advisory to provide information about a vulnerability in the public versions of ASP.NET Core MVC 1.1.0. This advisory also provides guidance on what developers can do to update their...
  11. 4010983 - Vulnerability in ASP.NET Core MVC 1.1.0 Could Allow Denial of Service - Version: 1.0

    Revision Note: V1.0 (January 27, 2017): Advisory published. Summary: Microsoft is releasing this security advisory to provide information about a vulnerability in the public versions of ASP.NET Core MVC 1.1.0. This advisory also provides guidance on what developers can do to update their...
  12. MS17-004 - Important: Security Update for Local Security Authority Subsystem Service...

    Severity Rating: Important Revision Note: V1.0 (January 10, 2017): Bulletin Published Summary: A denial of service vulnerability exists in the way the Local Security Authority Subsystem Service (LSASS) handles authentication requests. An attacker who successfully exploited the vulnerability...
  13. TA16-336A: Avalanche (crimeware-as-a-service infrastructure)

    Original release date: December 01, 2016 Systems Affected Microsoft Windows Overview “Avalanche” refers to a large global network hosting infrastructure used by cyber criminals to conduct phishing and malware distribution campaigns and money mule schemes. The United States Department of...
  14. MS16-114 - Important: Security Update for Windows SMBv1 Server (3185879) - Version: 1.0

    Severity Rating: Important Revision Note: V1.0 (September 13, 2016): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft Windows. On Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2 operating systems, the vulnerability could allow...
  15. 3108638 - Update for Windows Hyper-V to Address CPU Weakness - Version: 1.0

    Revision Note: V1.0 (November 10, 2015): Advisory published. Summary: Microsoft is announcing the availability of a security update for Windows Hyper-V to protect against a denial of service condition that can be triggered with certain central processing unit (CPU) chipsets. Although the...
  16. MS15-096 - Important: Vulnerability in Active Directory Service Could Allow Denial of...

    Severity Rating: Important Revision Note: V1.0 (September 8, 2015): Bulletin published. Summary: This security update resolves a vulnerability in Active Directory. The vulnerability could allow denial of service if an authenticated attacker creates multiple machine accounts. To exploit the...
  17. MS15-097 - Critical: Vulnerabilities in Microsoft Graphics Component Could Allow Remote...

    Severity Rating: Critical Revision Note: V1.1 (September 8, 2015): Revised bulletin to correct the security impact and the vulnerability information for CVE-2015-2506 (from denial of service to elevation of privilege). This is an informational change only. Summary: This security update resolves...
  18. MS15-054 - Important: Vulnerability in Microsoft Management Console File Format Could Allow...

    Severity Rating: Important Revision Note: V1.0 (May 12, 2015): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow denial of service if a remote, unauthenticated attacker convinces a user to open a share containing a...
  19. Static/Dynamic IP Restrictions -- DDOS Protection | Azure App Service

    In this video, Nazim Lala demonstrates how to configure IP restriction for Azure Web Apps to help secure your web app and to help mitigate Denial of Service attacks against your application. This video will show what Static and Dynamic IP restrictions are and how simple it is to configure them...
  20. MS15-042 - Important: Vulnerability in Windows Hyper-V Could Allow Denial of Service...

    Severity Rating: Important Revision Note: V1.0 (April 14, 2015): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow denial of service if an authenticated attacker runs a specially crafted application in a virtual machine...