CVE-2018-0959

Name of the Vulnerable Software and Affected Versions Windows 7 Windows Server 2012 R2 Windows RT 8.1 Windows Server 2008 Windows Server 2012 Windows 8.1 Windows Server 2016 Windows Server 2008 R2 Windows 10 Windows 10 Servers

Description A remote code execution issue exists due to insufficient input validation in Windows Hyper-V. This allows an attacker to execute arbitrary code using a specially crafted application. The vulnerability can be exploited by remote attackers, affecting the system.

Recommendations For Windows 7, update to a newer version that includes the fix for this issue. For Windows Server 2012 R2, apply the necessary configuration changes to prevent exploitation. For Windows RT 8.1, restrict access to the Hyper-V component until a patch is available. For Windows Server 2008, disable the vulnerable function to minimize the risk of exploitation. For Windows Server 2012, avoid using the vulnerable API endpoint until the issue is resolved. For Windows 8.1, consider disabling the Hyper-V feature as a temporary workaround. For Windows Server 2016, update to a newer version that includes the fix for this issue. For Windows Server 2008 R2, apply the necessary security patches to resolve the issue. For Windows 10, restrict access to the vulnerable module to minimize the risk of exploitation. For Windows 10 Servers, update to a newer version that includes the fix for this issue.