Denial of Service Vulnerability in Microsoft Hyper-V on Windows Platforms
CVE-2017-0179

5.8MEDIUM

Key Information:

Vendor: Microsoft
Status: Windows Hyper-v
Vendor: CVE Published:; 12 April 2017

Summary

A denial of service vulnerability exists in Microsoft Hyper-V due to insufficient input validation from a privileged user operating a guest system. This flaw allows malicious actors to exploit Hyper-V’s mechanisms, potentially leading to system instability and service interruptions. The issue affects multiple versions of Windows, including Windows 10, Windows 8.1, Windows Server 2012 R2, and Windows Server 2016. Proper security measures and updates are crucial for mitigating these vulnerabilities.

Affected Version(s)

Windows Hyper-V Windows 10, Windows 8.1, Windows Server 2012 R2, and Windows Server 2016

References

https://portal.msrc.microsoft.com/en-US/security-guidance...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/97426

vdb-entryx_refsource_BID

CVSS V3.1

Score:

5.8

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Apr 12, 2017
Vulnerability Reserved
Sep 9, 2016