VYPR
Unrated severityNVD Advisory· Published Jan 13, 2015· Updated Jun 17, 2026

CVE-2015-0015

CVE-2015-0015

Description

Microsoft Windows Server 2003 SP2, Server 2008 SP2 and R2 SP1, and Server 2012 Gold and R2 allow remote attackers to cause a denial of service (system hang and RADIUS outage) via crafted username strings to (1) Internet Authentication Service (IAS) or (2) Network Policy Server (NPS), aka "Network Policy Server RADIUS Implementation Denial of Service Vulnerability."

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

7
  • cpe:2.3:o:microsoft:windows_server_2003:*:sp2:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:*:*
    • cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_server_2012:-:gold:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:microsoft:windows_server_2012:-:gold:*:*:*:*:*:*
    • cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:x64:*:*
  • Range: Windows Server 2003 SP2, Server 2008 SP2 and R2 SP1, Server 2012 Gold and R2
  • Range: Windows Server 2003 SP2, Server 2008 SP2 and R2 SP1, Server 2012 Gold and R2

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.