CVE-2017-0051 — Corporation Hyper-v Network Switch vulnerability

3 documents3 sources

Severity

5.4MEDIUMNVD

EPSS

0.5%

top 33.40%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Corporation Hyper-v Network Switch Microsoft Windows 10 Msrc Windows 10 Version 1607 FOR X64-based Systems +1 more

Timeline

PublishedMar 17

Latest updateMay 13

Description

Microsoft Windows 10 1607 and Windows Server 2016 allow remote attackers to cause a denial of service (application hang) via a crafted Office document, aka "Microsoft Hyper-V Network Switch Denial of Service Vulnerability." This vulnerability is different from those described in CVE-2017-0074, CVE-2017-0076, CVE-2017-0097, CVE-2017-0098, and CVE-2017-0099.

CVSS vector

CVSS:3.0/AV:A/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:HExploitability: 1.0 | Impact: 4.0

Affected Packages4 packages

▶CVEListV5microsoft_corporation/hyper-v_network_switchWindows 10 1607 and Windows Server 2016

▶NVDmicrosoft/windows_101607

▶msrcmsrc/windows_server_2016

▶msrcmsrc/windows_10_version_1607_for_x64-based_systems

Patches

Patch: portal.msrc.microsoft.com ↗Patch: portal.msrc.microsoft.com ↗

🔴Vulnerability Details

GHSA

GHSA-vjcf-5gvp-6qm9: Microsoft Windows 10 1607 and Windows Server 2016 allow remote attackers to cause a denial of service (application hang) via a crafted Office document↗2022-05-13

▶

📋Vendor Advisories

Microsoft

Hyper-V Denial of Service Vulnerability↗2017-03-14

▶