Description
A vulnerability in the Microsoft Windows HTTP Protocol Stack (HTTP.sys) allows remote attackers to execute arbitrary code or cause a system crash on the host operating system.
Recommendation
Immediately apply the latest security updates provided by Microsoft to mitigate this vulnerability. Regularly update your Windows systems to ensure they are protected against known security risks.
References
- Microsoft: HTTP Protocol Stack Remote Code Execution Vulnerability
- CVE-2021-31166
- CAPEC-310
- OWASP 2021-A6
Related Issues
- react-dev-utils on Windows vulnerable to Remote Code Execution - CVE-2018-6342
- Remote code execution in Eclipse Theia - CVE-2021-34435
- Angular Expressions - Remote Code Execution - CVE-2021-21277
- JSONPath Plus Remote Code Execution (RCE) Vulnerability - CVE-2024-21534
- Tags:
- DOS
- Windows
Anything's wrong? Let us know Last updated on May 13, 2024