| CVE Number | Vulnerability | Product | Severity | Date |
|---|---|---|---|---|
| MS10-102 | Vulnerability in Hyper-V Could Allow Denial of Service (2345316) | Windows Server | Critical | 15-12-2010 |
Technical Information
Brief overview of the risk:
This security update resolves a privately reported vulnerability in Windows Server 2008 Hyper-V and Windows Server 2008 R2 Hyper-V. The vulnerability could allow denial of service if a specially crafted packet is sent to the VMBus by an authenticated user in one of the guest virtual machines hosted by the Hyper-V server.
Detailed Information on the risk:
A vulnerability exists in Windows Server 2008 Hyper-V and Windows Server 2008 R2 Hyper-V that could allow denial of service if a specifically crafted packet is sent to the VMBus by an authenticated user in one of the guest virtual machines hosted by the Hyper-V server. An attacker must have valid logon credentials and be able to log on locally into a guest virtual machine to exploit this vulnerability. The vulnerability could not be exploited remotely or by anonymous users.
Further information on this exploit is available at : MS10-102
Affected Software
Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2*Windows Server 2008 R2 for x64-based Systems*