Microsoft : Security Vulnerabilities, CVEs, Published In September 2020 (Denial of service)
<p>A denial of service vulnerability exists in Windows DNS when it fails to properly handle queries. An attacker who successfully exploited this vulnerability could cause the DNS service to become nonresponsive.</p>
<p>To exploit the vulnerability, an authenticated attacker could send malicious DNS queries to a target, resulting in a denial of service.</p>
<p>The update addresses the vulnerability by correcting how Windows DNS processes queries.</p>
Max CVSS
7.5
EPSS Score
0.20%
Published
2020-09-11
Updated
2023-12-31
<p>A denial of service vulnerability exists when Windows Routing Utilities improperly handles objects in memory. An attacker who successfully exploited the vulnerability could cause a target system to stop responding.</p>
<p>To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted application. The vulnerability would not allow an attacker to execute code or to elevate user rights directly, but it could be used to cause a target system to stop responding.</p>
<p>The update addresses the vulnerability by correcting how Windows handles objects in memory.</p>
Max CVSS
5.5
EPSS Score
0.04%
Published
2020-09-11
Updated
2023-12-31
Microsoft Graphics Component Denial of Service Vulnerability
Max CVSS
5.5
EPSS Score
0.04%
Published
2020-09-11
Updated
2023-12-31
<p>A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate specific malicious data from a user on a guest operating system.</p>
<p>To exploit the vulnerability, an attacker who already has a privileged account on a guest operating system, running as a virtual machine, could run a specially crafted application.</p>
<p>The security update addresses the vulnerability by resolving the conditions where Hyper-V would fail to handle these requests.</p>
Max CVSS
6.5
EPSS Score
0.04%
Published
2020-09-11
Updated
2023-12-31
<p>A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate specific malicious data from a user on a guest operating system.</p>
<p>To exploit the vulnerability, an attacker who already has a privileged account on a guest operating system, running as a virtual machine, could run a specially crafted application.</p>
<p>The security update addresses the vulnerability by resolving the conditions where Hyper-V would fail to handle these requests.</p>
Max CVSS
6.5
EPSS Score
0.04%
Published
2020-09-11
Updated
2023-12-31
<p>A denial of service vulnerability exists in Windows DNS when it fails to properly handle queries. An attacker who successfully exploited this vulnerability could cause the DNS service to become nonresponsive.</p>
<p>To exploit the vulnerability, an authenticated attacker could send malicious DNS queries to a target, resulting in a denial of service.</p>
<p>The update addresses the vulnerability by correcting how Windows DNS processes queries.</p>
Max CVSS
7.5
EPSS Score
0.20%
Published
2020-09-11
Updated
2023-12-31
6 vulnerabilities found