MS15-034: Vulnerability in HTTP.sys Could Allow Remote Code Execution (3042553)
Critical Nessus Plugin ID 82771
SynopsisThe remote Windows host is affected by a vulnerability in the HTTP protocol stack.
DescriptionThe version of Windows running on the remote host is affected a vulnerability in the HTTP protocol stack (HTTP.sys) due to improperly parsing crafted HTTP requests. A remote attacker can exploit this to execute arbitrary code with System privileges.
SolutionMicrosoft has released a set of patches for Windows 7, 2008 R2, 8, 8.1, 2012, and 2012 R2