CVE-2015-0079

Published: Mar 11, 2015Modified: May 6, 2026

7.8

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Exploitability: 10.0 / Impact: 6.9

Source: NVD

Description

The Remote Desktop Protocol (RDP) implementation in Microsoft Windows 7 SP1, Windows 8, Windows 8.1, and Windows Server 2012 Gold and R2 allows remote attackers to cause a denial of service (memory consumption and RDP outage) by establishing many RDP sessions that do not properly free allocated memory, aka "Remote Desktop Protocol (RDP) Denial of Service Vulnerability."

Affected (5)

Products: Microsoft: Windows 7, Windows 8, Windows 8.1, Windows Server 2012

4 products

Configuration A

5 vulnerable

Vulnerable Software	Affected Versions
Microsoft Windows 7	All versions
Microsoft Windows 8	All versions
Microsoft Windows 8.1	All versions
Microsoft Windows Server 2012	All versions
Microsoft Windows Server 2012	Version r2

Related CWEs

CWE-399

References (4)

http://www.securitytracker.com/id/1031892

Source: secure@microsoft.com

Third Party AdvisoryVDB Entry

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-030

Source: secure@microsoft.com

PatchVendor Advisory

http://www.securitytracker.com/id/1031892

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-030

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

Timeline

No history available yet.