Lucene search

K
cvelistMicrosoftCVELIST:CVE-2017-11779
HistoryOct 13, 2017 - 1:00 p.m.

CVE-2017-11779

2017-10-1313:00:00
microsoft
www.cve.org
13
microsoft
windows
dns
dnsapi.dll
remote code execution
vulnerability
dns responses
cve-2017-11779
windows 8.1
windows server 2012 r2
windows rt 8.1
windows 10
1511
1607
1703
windows server 2016

AI Score

9.2

Confidence

High

EPSS

0.506

Percentile

97.6%

The Microsoft Windows Domain Name System (DNS) DNSAPI.dll on Microsoft Windows 8.1, Windows Server 2012 R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows a remote code execution vulnerability when it fails to properly handle DNS responses, aka β€œWindows DNSAPI Remote Code Execution Vulnerability”.

CNA Affected

[
  {
    "product": "Windows Domain Name System (DNS)",
    "vendor": "Microsoft Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "Microsoft Windows 8.1, Windows Server 2012 R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016"
      }
    ]
  }
]