Denial of Service Vulnerability in Windows TCP/IP - MS08-004
|ID: oval:org.secpod.oval:def:2647||Date: (C)2011-11-02 (M)2017-10-04|
|Class: PATCH||Family: windows|
The host is missing an important security update according to Microsoft security bulletin, MS08-004. The update is required to fix denial of service vulnerability. A flaw is present in Transmission Control Protocol/Internet Protocol (TCP/IP) processing, which fails handle validation of the IP address provided by a DHCP server or assigned by command or API at the local machine. Successful exploitation could allow an attacker to obtain credentials and it could also allow attackers to stop responding and automatically restart of the affected system.
|Microsoft Windows Vista|