CVE-2017-11779

HIGH

Microsoft Windows DNSAPI.dll - Remote Code Execution via Malformed DNS Response

Title source: llm
STIX 2.1

Description

The Microsoft Windows Domain Name System (DNS) DNSAPI.dll on Microsoft Windows 8.1, Windows Server 2012 R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows a remote code execution vulnerability when it fails to properly handle DNS responses, aka "Windows DNSAPI Remote Code Execution Vulnerability".

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/101166
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1039533

Scores

CVSS v3 8.1
EPSS 0.3826
EPSS Percentile 97.3%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

Status published
Products (9)
microsoft/windows_10
microsoft/windows_10 1511
microsoft/windows_10 1607
microsoft/windows_10 1703
microsoft/windows_8.1
microsoft/windows_rt_8.1
microsoft/windows_server_2012 r2
microsoft/windows_server_2016
Microsoft Corporation/Windows Domain Name System (DNS) Microsoft Windows 8.1, Windows Server 2012 R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703
Published Oct 13, 2017
Tracked Since Feb 18, 2026