Rapid7 Vulnerability & Exploit Database

MS11-047: Vulnerability in Hyper-V Could Allow Denial of Service (2525835)

Back to Search

MS11-047: Vulnerability in Hyper-V Could Allow Denial of Service (2525835)

Severity
5
CVSS
(AV:L/AC:M/Au:N/C:N/I:N/A:C)
Published
06/16/2011
Created
07/25/2018
Added
04/10/2014
Modified
09/29/2014

Description

This security update resolves a privately reported vulnerability in Windows Server 2008 Hyper-V and Windows Server 2008 R2 Hyper-V. The vulnerability could allow denial of service if a specially crafted packet is sent to the VMBus by an authenticated user in one of the guest virtual machines hosted by the Hyper-V server. An attacker must have valid logon credentials and be able to send specially crafted content from a guest virtual machine to exploit this vulnerability. The vulnerability could not be exploited remotely or by anonymous users.

Solution(s)

  • WINDOWS-HOTFIX-MS11-047-df0283af-b446-4eff-804c-f901119c56a5
  • WINDOWS-HOTFIX-MS11-047-ff73c424-80ac-4029-8e4c-173da13bf2f1

References

  • WINDOWS-HOTFIX-MS11-047-df0283af-b446-4eff-804c-f901119c56a5
  • WINDOWS-HOTFIX-MS11-047-ff73c424-80ac-4029-8e4c-173da13bf2f1

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;