Microsoft Windows Server 2008
Moderate fix2 remedies
cpe:2.3:o:microsoft:windows_server_2008:*:*:*:*:*:*:*
Moderate fix2 remedies
Microsoft Windows RRAS Heap-Based Buffer Overflow Vulnerability Allowing Remote Code Execution
Vulnerability
A heap-based buffer overflow vulnerability has been identified in the Windows Routing and Remote Access Service (RRAS). This vulnerability allows an unauthorized attacker to execute code remotely over the network. It affects multiple Windows versions, including Windows Server 2008, Windows Server 2016, Windows 10 (both 32-bit and x64-based systems), Windows Server 2012 R2, and Windows 11. The vulnerability requires an admin user on the client to connect to a malicious server, potentially allowing the attacker to gain code execution on the client.
Impact
Exploitation of this vulnerability could lead to remote code execution on the affected system.
Remediation
Security updates for this vulnerability are available through the Microsoft Update Catalog. Specific update details can be found in the Microsoft Security Update Guide.
Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM
Vulnerability Rating
Custom Algorithm
spread
8.4impact
7.5exploitability
5.4remediation
7.7relevance
0.0threat
0.0urgency
2.9incentive
5.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.