Microsoft CVE-2019-1310: Windows Hyper-V Denial of Service Vulnerability
Description
A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system. An attacker who successfully exploited the vulnerability could cause the host server to crash. To exploit the vulnerability, an attacker who already has a privileged account on a guest operating system, running as a virtual machine, could run a specially crafted application that causes a host machine to crash. The update addresses the vulnerability by modifying how virtual machines access the Hyper-V Network Switch.
Solution(s)
- msft-kb4523205-08d9ac19-de85-40b7-98f7-8c54091494c1
- msft-kb4523205-61118c04-b0ba-49af-82b7-05cb038923fb
- msft-kb4523205-c0e9628c-ad49-4a51-84c0-2e18951adb68
- msft-kb4524570-29c1ec74-1dd6-400c-a4fe-28af68ababa8
- msft-kb4524570-537f6d1a-6a65-43a7-8f77-e2ece9811d47
- msft-kb4524570-92bf4fc2-1423-4d57-b6e6-109109dab39b
- msft-kb4524570-a464324d-52ab-4b91-b5eb-15b5e8dfaa70
- msft-kb4524570-bb3f5eb0-a6b4-429a-83b7-5c9ae5a5eefc
- msft-kb4524570-ce36ff81-c1f3-4022-ae29-980d7649600a
- msft-kb4525237-57a23bad-45b7-4713-b02b-e56d08a2a792
- msft-kb4525237-595c5dcb-7b6d-47ab-990b-062c0f566c14
- msft-kb4525237-79db43fa-b958-4e04-8146-2b589c3fb50a
- Lightweight Endpoint Agent
- Live Dashboards
- Real Risk Prioritization
- IT-Integrated Remediation Projects
- Cloud, Virtual, and Container Assessment
- Integrated Threat Feeds
- Easy-to-Use RESTful API
- Automation-Assisted Patching
- Automated Containment
With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.
– Scott Cheney, Manager of Information Security, Sierra View Medical Center