Advisory – HTTP.sys Remote Code Execution Vulnerability

A security vulnerability in various MS Windows OS’s A remote code execution vulnerability exists in the HTTP protocol stack (HTTP.sys), and has the common vulnerability and exposures designation of CVE-2015-1635. It is caused when HTTP.sys improperly parses specially crafted HTTP requests. An attacker who successfully exploited this vulnerability could execute… Continue reading