==================================================================== CERT-Renater Note d'Information No. 2017/VULN004 _____________________________________________________________________ DATE : 10/01/2017 HARDWARE PLATFORM(S): / OPERATING SYSTEM(S): Windows Vista, Windows Server 2008, Windows 7, Windows Server 2008 R2, Server Core installation option ===================================================================== https://technet.microsoft.com/en-us/library/security/MS17-004 ____________________________________________________________________ MS17-004 Published Date: January 10, 2017 Version: 1.0 Executive Summary A denial of service vulnerability exists in the way the Local Security Authority Subsystem Service (LSASS) handles authentication requests. An attacker who successfully exploited the vulnerability could cause a denial of service on the target system's LSASS service, which triggers an automatic reboot of the system. This security update is rated Important for Microsoft Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2 (and Server Core). For more information, see the Affected Software and Vulnerability Severity Ratings section. The security update addresses the vulnerability by changing the way that LSASS handles specially crafted authentication requests. For more information about the vulnerability, see the Vulnerability Information section. For more information about this update, see Microsoft Knowledge Base Article 3216771. Affected Software Windows Vista Windows Server 2008 Windows 7 Windows Server 2008 R2 Server Core installation option Vulnerability Information Local Security Authority Subsystem Service Denial of Service Vulnerability - CVE-2017-0004 A denial of service vulnerability exists in the way the Local Security Authority Subsystem Service (LSASS) handles authentication requests. An attacker who successfully exploited the vulnerability could cause a denial of service on the target system's LSASS service, which triggers an automatic reboot of the system. To exploit the vulnerability an unauthenticated attacker could send a specially crafted authentication request. The security update addresses the vulnerability by changing the way that LSASS handles specially crafted authentication requests. The following table contains links to the standard entry for each vulnerability in the Common Vulnerabilities and Exposures list: Vulnerability title CVE number Publicly disclosed Exploited Local Security Authority Subsystem Service Denial of Service Vulnerability CVE-2017-0004 Yes No ========================================================== Serveur de référence du CERT-Renater https://services.renater.fr/ssi/ ========================================================== + CERT-RENATER | tel : 01-53-94-20-44 + + 23 - 25 Rue Daviel | fax : 01-53-94-20-41 + + 75013 Paris | email: cert@support.renater.fr + ==========================================================