#VU6038 Out-of-bounds memory access in Windows and Windows Server - CVE-2017-0076

Cybersecurity Help s.r.o.

Published: 2017-03-14 | Updated: 2024-11-18

Vulnerability identifier: #VU6038

Vulnerability risk: Low

CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2017-0076

CWE-ID: CWE-119

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Windows
Operating systems & Components / Operating system
Windows Server
Operating systems & Components / Operating system

Vendor: Microsoft

Description

The vulnerability allows a remote attacker with privileged access to guest operating system to perform a denial of service (DoS) attack.

The vulnerability exists due to out-of-bounds memory access in Microsoft Hyper-V Network Switch. An attacker with privileged access to guest operating system can use a specially crafted application to trigger out-of-bounds memory access and cause the host machine to crash.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

Windows: Vista, 7, 8.1, 10

Windows Server: 2008 R2 - 2008, 2012 R2 - 2012, 2016 10.0.14393.10

External links
https://technet.microsoft.com/en-us/library/security/MS17-008

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated privileged user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Microsoft Windows Hyper-V

Hyper-V Denial of Service Vulnerability