Denial of Service Vulnerability in Windows Subsystem for Linux by Microsoft
CVE-2017-8627

4.7MEDIUM

Key Information:

Vendor
Microsoft
Status
Windows Subsystem For Linux
Vendor
CVE Published:
8 August 2017

Summary

A vulnerability exists in the Windows Subsystem for Linux within Windows 10, specifically in version 1703, which can result in denial of service. This flaw arises from improper handling of objects in memory, allowing an attacker to exploit this weakness and potentially disrupt the operation of the system.

Affected Version(s)

Windows Subsystem for Linux Windows 10 1703

References

https://portal.msrc.microsoft.com/en-US/security-guidance...
x_refsource_CONFIRM
http://www.securityfocus.com/bid/100065
vdb-entryx_refsource_BID
http://www.securitytracker.com/id/1039103
vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:
4.7
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.