Hyper-V vSMB Remote Code Execution Vulnerability - CVE-2017-0095ID: oval:org.secpod.oval:def:39326 | Date: (C)2017-03-16 (M)2024-03-06 |
Class: VULNERABILITY | Family: windows |
A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to properly validate vSMB packet data. An attacker who successfully exploited these vulnerabilities could execute arbitrary code on a target operating system.To exploit these vulnerabilities, an attacker running inside a virtual machine could run a specially crafted application that could cause the Hyper-V host operating system to execute arbitrary code.The update addresses the vulnerabilities by correcting how Windows Hyper-V validates vSMB packet data.
Platform: |
Microsoft Windows 10 |
Microsoft Windows Server 2016 |