Security update for Vulnerability in Windows Server 2008 Hyper-V that could Allow Denial of Service

Vulnerability in Windows Server 2008 Hyper-V Could Allow Denial of Service

 
The vulnerability could allow denial of service if a malformed sequence of machine instructions is run by an authenticated user in one of the guest virtual machines hosted by the Hyper-V server. An attacker must have valid logon credentials and be able to log on locally into a guest virtual machine to exploit this vulnerability. The vulnerability could not be exploited remotely or by anonymous users.
 
This security update is rated Important for all supported x64-based editions of Windows Server 2008 and Windows Server 2008 R2.

Security updates are available from Microsoft Update and Windows Update. Security updates are also available from the Microsoft Download Center. You can find them most easily by doing a keyword search for "security update."

Recommendation. The majority of customers have automatic updating enabled and will not need to take any action because this security update will be downloaded and installed automatically. Customers who have not enabled automatic updating need to check for updates and install this update manually. For information about specific configuration options in automatic updating, see Microsoft Knowledge Base Article 294871.
 
Important : *Server Core installation affected.
 
Downloads :

Windows Server 2008 (all editions)  : Download here
Installing without user intervention :
Windows6.0-KB977894-x64 /quiet

Windows Server 2008 R2Download here
Installing without user intervention :
Windows6.1-KB977894-x64 /quiet

 

You must restart your system after you apply this security update.

 

 

 

Microsoft provides detection and deployment guidance for security updates. Microsoft Baseline Security Analyzer (MBSA) allows administrators to scan local and remote systems for missing security updates as well as common security misconfigurations.
The latest version of MBSA has been released:
Microsoft Baseline Security Analyzer 2.1.1. For more information, see Microsoft Baseline Security Analyzer 2.1.

About Alessandro Cardoso
Virtualization and Management passionate. Infrastructure products and solutions knowledge with management and hands on experience; Project Leader, with deep knowledge and expertise in a variety of Microsoft Infrastructure technologies in areas such as Virtualization and Management with product skill sets ranging from, Hyper-V, System Center, Windows Server, SQL Server, Active Directory, Exchange, SharePoint, IIS and Forefront; Plus knowledge in Quest Migration Manager, Linux Infrastructure, Networking, Security Solutions (such as VPN, Firewall) and VMware in complex and large scenarios; Strong knowledge of industry-related datacenter processes, strategies, industry regulations and requirements. Selected as Microsoft Brazil IT Hero, in 2007 and Microsoft IT Heroes Happen in Los Angeles, in 2008. selected as Bussiness Case, further virtualization project for a Governmental Institution. I am also a well known speaker in IT events (e.g. Microsoft TechEd 2007, 2008, 2010 and 2011). MVP since 2009, in Virtual Machine. I have experience developing, planning, organizing, and leading complex initiatives as well business case development skills, acquired in 23 years of experience in IT, working in segments spanning from Government, Health, Education and IT. Well-known speaker in IT events like TechEd, Sage-AU, CNASI. Proven Multitasking skills, presentation skills and analytical skills and problem determination ability; Belief in providing the highest quality of service; Good listener and communicator; Know how to prioritize the work and perform under pressure. Continuously seeking innovative ways to improve productivity and a resourceful problem-solver with focus on customers. Microsoft Most Valuable Professional : Virtual Machine Certifications : Australia Computer Society Certified Professional, MCITP: Enterprise, MCSE: Security, MCSA, MCT, MCTS:SQL, MCTS:SharePoint, MCTS:Vista, Linux Conectiva Professional, Modulo Certified Security Officer Blogs : http://virtualizationandmanagement.wordpress.com http://virtualizacaoegerenciamento.wordpress.com

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

Follow

Get every new post delivered to your Inbox.

Join 823 other followers

%d bloggers like this: