This script is Copyright (C) 2016-2017 Tenable Network Security, Inc.
The remote Windows host is affected by a denial of service
The remote Windows host is missing a security update. It is,
therefore, affected by a denial of service vulnerability in the HTTP
2.0 protocol stack (HTTP.sys) due to improper parsing of HTTP 2.0
requests. An unauthenticated, remote attacker can exploit this
vulnerability, via a specially crafted HTTP packet, to cause the
system to become unresponsive, resulting in a denial of service
See also :
Microsoft has released a set of patches for Windows 10.
Risk factor :
High / CVSS Base Score : 7.8
CVSS Temporal Score : 6.4
Public Exploit Available : true