OpenCVE

The TCP/IP implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, Windows 8, Windows Server 2012, and Windows RT allows remote attackers to cause a denial of service (reboot) via a crafted packet that terminates a TCP connection, aka "TCP FIN WAIT Vulnerability."

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

AV:N/AC:L/Au:N/C:N/I:N/A:C

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact partial

Vendors	Products
Microsoft	Windows 7 Windows 8 Windows Rt Windows Server 2008 Windows Server 2012 Windows Vista

Configuration 1 [-]

cpe:2.3:o:microsoft:windows_vista:*:sp2:*:*:*:*:*:*

Configuration 2 [-]

OR	cpe:2.3:o:microsoft:windows_server_2008::sp2:x64:::::
	cpe:2.3:o:microsoft:windows_server_2008::sp2:x86:::::
	cpe:2.3:o:microsoft:windows_server_2008:-:sp2:itanium:::::*

Configuration 3 [-]

OR	cpe:2.3:o:microsoft:windows_7:::x64:::::*
	cpe:2.3:o:microsoft:windows_7:::x86:::::*
	cpe:2.3:o:microsoft:windows_7::sp1:x86:::::
	cpe:2.3:o:microsoft:windows_7:-:sp1:x64:::::*

Configuration 4 [-]

OR	cpe:2.3:o:microsoft:windows_server_2008:r2::itanium:::::
	cpe:2.3:o:microsoft:windows_server_2008:r2::x64:::::

Configuration 5 [-]

OR	cpe:2.3:o:microsoft:windows_8:-:-:x64:::::*
	cpe:2.3:o:microsoft:windows_8:-:-:x86:::::*

Configuration 6 [-]

cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*

Configuration 7 [-]

cpe:2.3:o:microsoft:windows_rt:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://www.us-cert.gov/cas/techalerts/TA13-043B.html
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-018
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16373

History

Thu, 17 Oct 2024 19:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

MITRE

Status: PUBLISHED

Assigner: microsoft

Published: 2013-02-13T11:00:00

Updated: 2024-10-17T18:18:12.016Z

Reserved: 2012-11-27T00:00:00

Link: CVE-2013-0075

Vulnrichment

Updated: 2024-08-06T14:10:56.656Z

NVD

Status : Modified

Published: 2013-02-13T12:04:12.320

Modified: 2023-12-07T18:38:56.693

Link: CVE-2013-0075

Redhat

No data.

Metrics

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

Exploitation none

Automatable no

Technical Impact partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object