← back
CVE-2011-1965

CVE-2011-1965

EPSS 25.5%
Tcpip.sys in the TCP/IP stack in Microsoft Windows 7 Gold and SP1 and Windows Server 2008 R2 and R2 SP1 does not properly implement URL-based QoS, which allows remote attackers to cause a denial of service (reboot) via a crafted URL to a web server, aka "TCP/IP QOS Denial of Service Vulnerability."
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/17981unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-064http://securityreason.com/securityalert/8474https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12318http://www.us-cert.gov/cas/techalerts/TA11-221A.html