Vulnerability in Hyper-V could allow elevation of privilege - MS13-092
|ID: oval:org.secpod.oval:def:15997||Date: (C)2013-11-14 (M)2017-09-22|
|Class: PATCH||Family: windows|
The host is missing an important security update according to Microsoft security bulletin, MS13-092. The update is required to fix address corruption vulnerability. The flaw is present in the Hyper-V, which is caused when the value of a data structure is not properly verified. Successful exploitation could allow denial of service for the Hyper-V host if the attacker passes a specially crafted function parameter in a hypercall from an existing running virtual machine to the hypervisor.
|Microsoft Windows 8|
|Microsoft Windows Server 2012|
|Microsoft Hyper-V Server|