Unrated severityNVD Advisory· Published Sep 10, 2014· Updated May 6, 2026

CVE-2014-4068

Description

The Response Group Service in Microsoft Lync Server 2010 and 2013 and the Core Components in Lync Server 2013 do not properly handle exceptions, which allows remote attackers to cause a denial of service (daemon hang) via a crafted call, aka "Lync Denial of Service Vulnerability."

Affected products

Microsoft/Lync Server2 versions
cpe:2.3:a:microsoft:lync_server:2010:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:microsoft:lync_server:2010:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:lync_server:2013:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

blogs.technet.com/b/srd/archive/2014/09/09/assessing-risk-for-the-september-2014-security-updates.aspxnvd
www.securityfocus.com/bid/69586nvd
www.securitytracker.com/id/1030821nvd
docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-055nvd
exchange.xforce.ibmcloud.com/vulnerabilities/95544nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.025
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000