CVE-2017-0164 - K7 Labs

<< Back

CVE Number	Vulnerability	Product	Severity	Date
CVE-2017-0164	Microsoft Windows Active Directory Denial of Service Vulnerability (CVE-2017-0164)	Microsoft Windows	Critical	12-04-2017

Technical Information

Brief overview of the risk:
A denial of service vulnerability exists in Active Directory when an authenticated attacker sends malicious search queries. An attacker who successfully exploited this vulnerability could cause the Active Directory service to become nonresponsive.

Detailed Information on the risk:

To exploit this vulnerability, an attacker must have valid credentials. An attacker could exploit this vulnerability by sending malicious search queries, resulting in denial of service.

Further information on this exploit is available at : CVE-2017-0164

Microsoft Windows 10 Version 1607 for 32-bit Systems
Microsoft Windows 10 Version 1607 for x64-based Systems
Microsoft Windows Server 2016

Affected Software

Microsoft Windows 10 Version 1607 for 32-bit Systems
Microsoft Windows 10 Version 1607 for x64-based Systems
Microsoft Windows Server 2016