CVE-2017-0164

EPSS 3.9%

Vexday Risk Score

3Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS —EPSS 3.9%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

12 Apr 2017Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

A denial of service vulnerability exists in Windows 10 1607 and Windows Server 2016 Active Directory when an authenticated attacker sends malicious search queries, aka "Active Directory Denial of Service Vulnerability."

Affected products

Microsoft Corporation · Active Directory

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0164 http://www.securityfocus.com/bid/97448 http://www.securitytracker.com/id/1038235