Top

Microsoft Security Bulletin: Vulnerability in HTTP.sys Could Allow Remote Code Execution

Posted in Webhosting News on Apr 16, 2015

  1. We would like to inform you about a critical vulnerability detected in Microsoft Windows Operating System:

Microsoft Security Bulletin MS15-034 - Critical: Vulnerability in HTTP.sys Could Allow Remote Code Execution (3042553)

The vulnerability could allow remote code execution if an attacker sends a specially crafted HTTP request to an affected Windows system.

Affected software:

  • Windows 7
  • Windows Server 2008 R2
  • Windows 8
  • Windows Server 2012
  • Windows 8.1
  • Windows Server 2012 R2

We strongly advice you to push the latest updates if you are running one of the above mentioned operating systems.

For more information on this bug, please refer to the following website: https://technet.microsoft.com/library/security/MS15-034