Home

CVE-2012-2551

Description

The server in Kerberos in Microsoft Windows Server 2008 R2 and R2 SP1, and Windows 7 Gold and SP1, allows remote attackers to cause a denial of service (NULL pointer dereference and reboot) via a crafted session request, aka Kerberos NULL Dereference Vulnerability.

Risk Information

Base Score
7.5
MODERATE
Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
61.326

Associated Vulnerability

VulnerabilityOS Platform
ms12-069: vulnerability in kerberos could allow denial of service: october 9, 2012 for Windows 7 (KB2743555) x86 based systemsWindows
ms12-069: vulnerability in kerberos could allow denial of service: october 9, 2012 for Windows 7 (KB2743555) x86 based systems for SP1Windows
ms12-069: vulnerability in kerberos could allow denial of service: october 9, 2012 for Windows 7 for x64-based Systems (KB2743555)Windows
ms12-069: vulnerability in kerberos could allow denial of service: october 9, 2012 for Windows 7 for x64-based Systems (KB2743555) for SP1Windows
ms12-069: vulnerability in kerberos could allow denial of service: october 9, 2012 for Windows Server 2008 R2 x64 Edition (KB2743555)Windows
ms12-069: vulnerability in kerberos could allow denial of service: october 9, 2012 for Windows Server 2008 R2 x64 Edition (KB2743555) for SP1Windows

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-12615Security Update for Windows 7 (KB2743555)
PATCH-12616Security Update for Windows 7 (KB2743555)
PATCH-12617Security Update for Windows 7 for x64-based Systems (KB2743555)
PATCH-12618Security Update for Windows 7 for x64-based Systems (KB2743555)
PATCH-12619Security Update for Windows Server 2008 R2 x64 Edition (KB2743555)
PATCH-12620Security Update for Windows Server 2008 R2 x64 Edition (KB2743555)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234