Vulnerability detail
Enriched intelligence for a single CVE
Critical
CVE-2015-1635
PUBLISHEDHTTP.sys in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8, Windows 8.1, and Windows Server 2012 Gold and R2 allows remote...
- Vendor
- Microsoft
- Product
- Windows
- Published
- Apr 14, 2015
- EPSS
- —
Description
HTTP.sys in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8, Windows 8.1, and Windows Server 2012 Gold and R2 allows remote attackers to execute arbitrary code via crafted HTTP requests, aka "HTTP.sys Remote Code Execution Vulnerability."
CVSS scores
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AV:N/AC:L/Au:N/C:C/I:C/A:C
Exploitation status
Exploited in the wild
Recorded 2022-02-10 00:00:00 UTC · Source
SSVC decision points
- Exploitation
- active
- Automatable
- Yes
- Technical impact
- total
References
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-034
- https://www.exploit-db.com/exploits/36773/
- http://www.osvdb.org/120629
- http://www.securitytracker.com/id/1032109
- http://www.securityfocus.com/bid/74013
- https://www.exploit-db.com/exploits/36776/
- http://packetstormsecurity.com/files/131463/Microsoft-Windows-HTTP.sys-Proof-Of-Concept.html
Known exploited vulnerability sources
Catalogues that list this CVE as a known exploited vulnerability.
| Source | Added |
|---|---|
| CISA | Feb 10, 2022 |
Scanner integrations
| Scanner | Reference | Detected |
|---|---|---|
| Nuclei | https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2015/CVE-2015-1635.yaml | Apr 25, 2025 |
Potential proof of concepts
These PoCs are unverified and could contain malware. Use at your own risk.
github · Created 2024-05-28 10:41:07 UTC · 0 stars
Microsoft Windows 'HTTP.sys' - Remote Code Execution
github · Created 2022-04-17 16:48:44 UTC · 1 stars
CVE-2015-1635-POC,指定IP与端口验证HTTP.sys漏洞是否存在
github · Created 2021-07-12 00:37:54 UTC · 0 stars
github · Created 2021-07-12 00:23:30 UTC · 2 stars
github · Created 2018-08-02 11:28:14 UTC · 1 stars
MS15-034: HTTP.sys (IIS) DoS
github · Created 2018-06-20 14:28:11 UTC · 7 stars
MS15-034 HTTP.sys 远程执行代码检测脚本(MS15-034 HTTP.sys remote execution code poc script)
github · Created 2015-04-16 07:31:47 UTC · 2 stars
CVE-2015-1635,MS15-034
Timeline
-
CVE ID Reserved
-
CVE Published to Public
-
Added to KEVIntel
-
Detected by Nuclei