virus logo Intrusion Prevention

MS.Windows.QUIC.Version.Negotiation.Packet.Handling.DoS

description-logoDescription

This indicates an attack attempt to exploit a Denial of Service Vulnerability in Microsoft Windows Server.
The vulnerability is due to improper handling of the incoming QUIC traffic. A remote, unauthenticated attacker could exploit this vulnerability by sending a crafted packet to the target server. Successful exploitation could result in the denial of service on the target machine.

affected-products-logoAffected Products

Microsoft .NET Core 7.0
Microsoft Microsoft Visual Studio 2022 version 17.2
Microsoft Microsoft Visual Studio 2022 version 17.4
Microsoft Microsoft Visual Studio 2022 version 17.6
Microsoft Microsoft Visual Studio 2022 version 17.7
Microsoft PowerShell 7.3
Microsoft Windows 11
Microsoft Windows Server 2022
Microsoft Windows Server 2022 (Server Core installation)

Impact logoImpact

Denial of Service: Remote attackers can crash vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-38171

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Status Detail
2023-12-06 26.690
Modified
 Default_action:pass:drop
2023-11-23 26.683
New
ID 54382
Created Nov 15, 2023
Updated Nov 23, 2023
CVE ID
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Exploit Prediction Score 8.99%
Default Action drop
Active
Affected OS Windows
Affected App Other
Profile Type DoS