Vulnerability in Hyper-V could allow elevation of privilege - MS13-092ID: oval:org.secpod.oval:def:15997 | Date: (C)2013-11-14 (M)2022-10-10 |
Class: PATCH | Family: windows |
The host is missing an important security update according to Microsoft security bulletin, MS13-092. The update is required to fix address corruption vulnerability. The flaw is present in the Hyper-V, which is caused when the value of a data structure is not properly verified. Successful exploitation could allow denial of service for the Hyper-V host if the attacker passes a specially crafted function parameter in a hypercall from an existing running virtual machine to the hypervisor.
Platform: |
Microsoft Windows 8 |
Microsoft Windows Server 2012 |
Product: |
Microsoft Hyper-V Server |