Security 10809 Published by

Microsoft updated the following security bulletin:

- MS10-102 - Important: Vulnerability in Hyper-V Could Allow Denial of Service (2345316) - Version:1.1



MS10-102 - Important: Vulnerability in Hyper-V Could Allow Denial of Service (2345316) - Version:1.1
Severity Rating: Important - Revision Note: V1.1 (January 12, 2011): Added an update FAQ to clarify that the update can only be installed on affected operating systems with the Hyper-V role enabled.

Summary: This security update resolves a privately reported vulnerability in Windows Server 2008 Hyper-V and Windows Server 2008 R2 Hyper-V. The vulnerability could allow denial of service if a specially crafted packet is sent to the VMBus by an authenticated user in one of the guest virtual machines hosted by the Hyper-V server. An attacker must have valid logon credentials and be able to send specially crafted content from a guest virtual machine to exploit this vulnerability. The vulnerability could not be exploited remotely or by anonymous users.
Read more