MS13-014: Vulnerability in NFS Server Could Allow Denial of Service (2790978)

This script is Copyright (C) 2013-2014 Tenable Network Security, Inc.


Synopsis :

The remote Windows host is potentially affected by a denial of service
vulnerability.

Description :

The remote Windows host is potentially affected by a vulnerability that
could allow denial of service if an attacker attempts a file operation
on a read-only share. An attacker who exploited this vulnerability
could cause the affected system to stop responding and restart. The
vulnerability only affects Windows servers with the NFS role enabled.

See also :

http://technet.microsoft.com/en-us/security/bulletin/ms13-014

Solution :

Microsoft has released a set of patches for 2008 R2 and 2012.

Risk factor :

Medium / CVSS Base Score : 6.3
(CVSS2#AV:N/AC:M/Au:S/C:N/I:N/A:C)
CVSS Temporal Score : 5.2
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true

Family: Windows : Microsoft Bulletins

Nessus Plugin ID: 64575 ()

Bugtraq ID: 57853

CVE ID: CVE-2013-1281