Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2017-0004
HistoryJan 10, 2017 - 9:59 p.m.

CVE-2017-0004

2017-01-1021:59:00
CWE-20
[email protected]
web.nvd.nist.gov
62
cve-2017-0004
lsass
denial of service
windows
vista
server 2008
server 2012
windows 7

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.2 High

AI Score

Confidence

High

0.955 High

EPSS

Percentile

99.4%

JSON

The Local Security Authority Subsystem Service (LSASS) in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allows remote attackers to cause a denial of service (reboot) via a crafted authentication request, aka “Local Security Authority Subsystem Service Denial of Service Vulnerability.”

Affected configurations

NVD
Node
microsoftwindows_7Match-sp1
OR
microsoftwindows_server_2008Match-sp2
OR
microsoftwindows_server_2008Matchr2sp1
OR
microsoftwindows_vistaMatch-sp2

Related

mscve 1
mskb 4
checkpoint_advisories 1
nessus 1
symantec 1
kaspersky 2
openvas 1
nvd 1
prion 1
cvelist 1
thn 1
mscve
mscve
Local Security Authority Subsystem Service Denial of Service Vulnerability
2017-01-10 08:00:00
mskb
mskb
January 2017 Security Only Quality Update for Windows 7 SP1 and Windows Server 2008 R2 SP1
2017-01-10 08:00:00
January 2017 Security Monthly Quality Rollup for Windows 7 SP1 and Windows Server 2008 R2 SP1
2017-01-10 08:00:00
MS17-004: Description of the security update for Local Security Authority Subsystem Service: January 10, 2017
2017-01-10 08:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft LSASS Denial of Service (MS17-004: CVE-2017-0004)
2017-01-10 00:00:00
nessus
nessus
MS17-004: Security Update for Local Security Authority Subsystem Service (3216771)
2017-01-10 00:00:00
symantec
symantec
Microsoft Windows LSASS CVE-2017-0004 Denial of Service Vulnerability
2017-01-10 00:00:00
kaspersky
kaspersky
KLA11903 DoS vulnerability in Microsoft Products (ESU)
2017-01-10 00:00:00
KLA10941 Denial of service vulnerability in Microsoft Windows
2017-01-10 00:00:00
openvas
openvas
Microsoft Windows LSASS Local Denial of Service Vulnerability (3216771)
2017-01-11 00:00:00
nvd
nvd
CVE-2017-0004
2017-01-10 21:59:00
prion
prion
Design/Logic Flaw
2017-01-10 21:59:00
cvelist
cvelist
CVE-2017-0004
2017-01-10 21:00:00
thn
thn
Microsoft Releases 4 Security Updates — Smallest Patch Tuesday Ever!
2017-01-10 22:26:00

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.2 High

AI Score

Confidence

High

0.955 High

EPSS

Percentile

99.4%

JSON
Related for CVE-2017-0004
mscve1mskb4checkpoint_advisories1nessus1symantec1kaspersky2openvas1nvd1prion1cvelist1thn1