MS10-010: Vulnerability in Windows Server 2008 Hyper-V Could Allow Denial of Service (977894)

This script is Copyright (C) 2010-2013 Tenable Network Security, Inc.


Synopsis :

A local attacker can crash the remote host.

Description :

The remote host is affected by a denial of service flaw that exists
in Hyper-V. A local attacker can leverage this to crash all the VMs
on the remote host.

To successfully exploit this vulnerability, an attacker would need an
account on one of the remote VMs and be able to execute arbitrary code
on it.

See also :

http://technet.microsoft.com/en-us/security/bulletin/MS10-010

Solution :

Microsoft has released a set of patches for Windows 2008 and 2008 R2.

Risk factor :

Medium / CVSS Base Score : 4.9
(CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C)
CVSS Temporal Score : 3.6
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: Windows : Microsoft Bulletins

Nessus Plugin ID: 44420 ()

Bugtraq ID: 38113

CVE ID: CVE-2010-0026