CVE-2017-0164
MEDIUMWindows 10 1607 and Windows Server 2016 Active Directory - Authenticated Denial of Service via Malicious Search Queries
Title source: llmDescription
A denial of service vulnerability exists in Windows 10 1607 and Windows Server 2016 Active Directory when an authenticated attacker sends malicious search queries, aka "Active Directory Denial of Service Vulnerability."
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/97448
Patch, Vendor Advisory x_refsource_confirm
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0164
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1038235
Scores
CVSS v3
4.4
EPSS
0.0537
EPSS Percentile
90.2%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-20
Status
published
Products (3)
microsoft/windows_10
1607
microsoft/windows_server_2016
Microsoft Corporation/Active Directory
Windows 10 1607 and Windows Server 2016
Published
Apr 12, 2017
Tracked Since
Feb 18, 2026