Main Vulnerability Database Exploits ID:4587 - Exploit for Input validation error in Windows and Windows Server - CVE-2020-0890

ID:4587 - Exploit for Input validation error in Windows and Windows Server - CVE-2020-0890

Published: September 11, 2020

Vulnerability identifier: #VU46440

Vulnerability risk: Low

CVE-ID: CVE-2020-0890

CWE-ID: CWE-20

Exploitation vector: Local access

Vulnerable software:
Windows
Windows Server

Link to public exploit:

https://github.com/gerhart01/hyperv_local_dos_poc

Vulnerability description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to the Microsoft Hyper-V on a host server fails to properly validate specific malicious data. A local user can use a specially crafted application and perform a denial of service (DoS) attack.

Remediation

Install updates from vendor's website.

ID:4587 - Exploit for Input validation error in Windows and Windows Server - CVE-2020-0890

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human