Gravité: : Élevé
  Identifiant(s) CVE: : CVE-2013-3898
  Date du conseil: 21 novembre 2013

  Description

This security update resolves a reported vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker passes a maliciously-crafted function parameter in a hypercall from an existing running virtual machine to the hypervisor. The vulnerability could also allow denial of service for the Hyper-V host.

  Solutions

  Affected software and version:

  • Windows 8 for x64-based Systems (Pro and Enterprise editions only)
  • Windows Server 2012 (Standard and Datacenter editions
  • and Hyper-V Server 2012 only)
  • Windows Server 2012 (Server Core installation)