Microsoft – Microsoft Lync Server is vulnerable to a denial of service

Advisory ID

Vulnerability Information


Microsoft Lync Server is vulnerable to a denial of service, caused by improper handling of a null dereference. By sending a specially crafted request, a remote attacker could exploit this vulnerability to cause the system to stop responding.  For more information on the affected versions, CVE – 2014-4071 was assigned for this bug.

Release Date





The UCTM solution from RedShift Networks provides the industry’s first complete security solution developed to secure VOIP networks, endpoints and applications. His research team is constantly looking for new attack patterns, advanced penetration testing methods, vulnerability identification and deployment of new signatures for constantly subscribed clients. For more information visit

External Resources



Common Vulnerabilities and Exposures (CVE) – 2014-4071