CVE-2020-1243— Windows Hyper-V Denial of Service Vulnerability

Windows Hyper-V Denial of Service Vulnerability

<p>A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate specific malicious data from a user on a guest operating system.</p> <p>To exploit the vulnerability, an attacker who already has a privileged account on a guest operating system, running as a virtual machine, could run a specially crafted application.</p> <p>The security update addresses the vulnerability by resolving the conditions where Hyper-V would fail to handle these requests.</p>

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

N/A

Microsoft Windows Hyper-V 输入验证错误漏洞

Microsoft Windows Hyper-V是美国微软（Microsoft）公司的一款可提供硬件虚拟化的工具。该软件允许创建虚拟硬盘驱动器、虚拟交换机以及许多其他虚拟设备。 Microsoft Hyper-V 存在安全漏洞，该漏洞源于无法正确验证来宾操作系统上的用户的特定恶意数据时，存在拒绝服务漏洞。攻击者可利用该漏洞可以运行经特殊设计的应用程序。以下产品及版本受到影响： Windows 10 1909版本， Windows 10 1709版本， Windows Server 1909版本， Win

N/A

N/A