CVE-2015-6125

Use-after-free vulnerability in the DNS server in Microsoft Windows Server 2008 SP2 and R2 SP1 and Server 2012 Gold and R2 allows remote attackers to execute arbitrary code via crafted requests, aka "Windows DNS Use After Free Vulnerability."
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:C/A:C
microsoftCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 97%
VendorProductVersion
microsoftwindows_server_2008
-
microsoftwindows_server_2012
*
𝑥
= Vulnerable software versions
References
http://www.securitytracker.com/id/1034323
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-127
http://www.securitytracker.com/id/1034323
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-127