Mitigating Remote Code Execution in "HTTP.sys" (CVE-2015-1635)

A critical Windows vulnerability in its HTTP stack ("HTTP.sys"), which was resolved in a recent Microsoft's Patch Tuesday release, could allow remote attackers to execute code on an IIS server with t...
Published Apr 15, 2015
Version 1.0
0 day
0-day
ASM Advanced WAF
cve-2015-1635
exploit
http.sys
iis vulnerability
ms15-034
security
zero day
Maxim_Zavodchik's avatar
Maxim_Zavodchik
Historic F5 Account
Apr 16, 2015
https://support.f5.com/kb/en-us/products/big-ip_asm/manuals/product/config_guide_asm_10_2_0/asm_attack_sigs.html1047564