Microsoft CVE-2017-8623: Windows Hyper-V Denial of Service Vulnerability
Description
A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system. An attacker who successfully exploited the vulnerability could cause the host server to crash. To exploit the vulnerability, an attacker who already has a privileged account on a guest operating system, running as a virtual machine, could run a specially crafted application that causes a host machine to crash. The update addresses the vulnerability by modifying how virtual machines access the Hyper-V Network Switch.
Solution(s)
- msft-kb4034658-d2b42ef5-7252-4d4a-918e-dff0a199bdc0
- msft-kb4034658-e4542b86-5a77-405b-b7b3-042d897c88a3
- msft-kb4034658-fbf6de89-bf23-48b9-aef0-aae76f268708
- msft-kb4034674-597167c1-ec29-4878-ab61-2f40b6566684
- msft-kb4034674-7af4b2d1-799a-4c3e-bc78-b3806c47b958
- Lightweight Endpoint Agent
- Live Dashboards
- Real Risk Prioritization
- IT-Integrated Remediation Projects
- Cloud, Virtual, and Container Assessment
- Integrated Threat Feeds
- Easy-to-Use RESTful API
- Automation-Assisted Patching
- Automated Containment
With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.
– Scott Cheney, Manager of Information Security, Sierra View Medical Center