CVE-2014-4068

CVE Database · CVE-2014-4068

CVE-2014-4068

· N/AModified

CVSS v3.1

N/A

EPSS

19.69%

Published

Sep 9, 2014

Modified

May 6, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The Response Group Service in Microsoft Lync Server 2010 and 2013 and the Core Components in Lync Server 2013 do not properly handle exceptions, which allows remote attackers to cause a denial of service (daemon hang) via a crafted call, aka "Lync Denial of Service Vulnerability."

Weaknesses (CWE)

CWE-20

Affected Products (2)

microsoft · lync_servervulnerable

References (10)

http://blogs.technet.com/b/srd/archive/2014/09/09/assessing-risk-for-the-september-2014-security-updates.aspx

http://www.securityfocus.com/bid/69586

http://www.securitytracker.com/id/1030821

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-055

https://exchange.xforce.ibmcloud.com/vulnerabilities/95544

http://blogs.technet.com/b/srd/archive/2014/09/09/assessing-risk-for-the-september-2014-security-updates.aspx

http://www.securityfocus.com/bid/69586

http://www.securitytracker.com/id/1030821

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-055

https://exchange.xforce.ibmcloud.com/vulnerabilities/95544

KEV Catalog EPSS Scores Vendors All CVEs