CVE-2017-0051 - Microsoft Windows 10 1607 and Windows Server 2016 allow remote attackers to cause a denial of servic

CVE-2017-0051

Summary

Microsoft Windows 10 1607 and Windows Server 2016 allow remote attackers to cause a denial of service (application hang) via a crafted Office document, aka "Microsoft Hyper-V Network Switch Denial of Service Vulnerability." This vulnerability is different from those described in CVE-2017-0074, CVE-2017-0076, CVE-2017-0097, CVE-2017-0098, and CVE-2017-0099.

References

Vulnerable Configurations

cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*

CVSS

Base:	2.9 (as of 03-10-2019 - 00:03)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
ADJACENT_NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:A/AC:M/Au:N/C:N/I:N/A:P

msbulletin via4

bulletin_id	MS17-008
bulletin_url
date	2017-03-14T00:00:00
impact	Remote Code Execution
knowledgebase_id	4013082
knowledgebase_url
severity	Critical
title	Security Update for Windows Hyper-V

refmap via4

bid	96026
confirm	https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0051
sectrack	1037999

Last major update

03-10-2019 - 00:03

Published

17-03-2017 - 00:59

Last modified

03-10-2019 - 00:03