{"id":10374,"date":"2010-02-09T20:08:19","date_gmt":"2010-02-09T20:08:19","guid":{"rendered":"https:\/\/aidanfinn.com\/?p=10374"},"modified":"2010-02-09T20:08:19","modified_gmt":"2010-02-09T20:08:19","slug":"kb977894-very-important-hyper-v-security-update","status":"publish","type":"post","link":"https:\/\/aidanfinn.com\/?p=10374","title":{"rendered":"KB977894: VERY Important Hyper-V Security Update"},"content":{"rendered":"<p>One of the patches released by Microsoft is a <a href=\"http:\/\/www.microsoft.com\/technet\/security\/bulletin\/ms10-010.mspx\" target=\"_blank\">critical security fix for Hyper-V<\/a>.&#160; It affects all installation types on both Windows Server 2008 and Windows Server 2008 R2.<\/p>\n<p><em>\u201cThis security update resolves a privately reported vulnerability in Windows Server 2008 Hyper-V and Windows Server 2008 R2 Hyper-V. The vulnerability could allow denial of service if a malformed sequence of machine instructions is run by an authenticated user in one of the guest virtual machines hosted by the Hyper-V server. An attacker must have valid logon credentials and be able to log on locally into a guest virtual machine to exploit this vulnerability. The vulnerability could not be exploited remotely or by anonymous users\u201d.<\/em><\/p>\n<p>Basically, if a person has rights to log into a VM hosted on a vulnerable server, then they could cause a Denial-of-Service (DOS) attack.&#160; <\/p>\n<p>The update is supplied via Windows Update.&#160; Check your updates either on the host, Configuration Manager, WSUS or whatever your update service is.<\/p>\n<p>I\u2019ll be pushing it out first thing tomorrow morning.&#160; Live Migration with VMM 2008 R2 maintenance mode makes it really easy to update clustered hosts.&#160; Standalone hosts will have some downtime for their VM\u2019s.&#160; Most VM\u2019s will be set up to go into a saved state when the host shuts down.&#160; That limits interruption to them in a way.<\/p>\n<div style=\"padding-bottom: 0px; margin: 0px; padding-left: 0px; padding-right: 0px; display: inline; float: none; padding-top: 0px\" id=\"scid:0767317B-992E-4b12-91E0-4F059A8CECA8:bc09e7d4-6362-4ae3-88c8-b06161640661\" class=\"wlWriterEditableSmartContent\">Technorati Tags: <a href=\"http:\/\/technorati.com\/tags\/Hyper-V\" rel=\"tag\">Hyper-V<\/a>,<a href=\"http:\/\/technorati.com\/tags\/Windows+Server+2008\" rel=\"tag\">Windows Server 2008<\/a>,<a href=\"http:\/\/technorati.com\/tags\/Windows+Server+2008+R2\" rel=\"tag\">Windows Server 2008 R2<\/a>,<a href=\"http:\/\/technorati.com\/tags\/Security\" rel=\"tag\">Security<\/a><\/div>\n","protected":false},"excerpt":{"rendered":"<p>One of the patches released by Microsoft is a critical security fix for Hyper-V.&#160; It affects all installation types on both Windows Server 2008 and Windows Server 2008 R2. \u201cThis security update resolves a privately reported vulnerability in Windows Server 2008 Hyper-V and Windows Server 2008 R2 Hyper-V. The vulnerability could allow denial of service &hellip; <a href=\"https:\/\/aidanfinn.com\/?p=10374\" class=\"more-link\">Continue reading<span class=\"screen-reader-text\"> &#8220;KB977894: VERY Important Hyper-V Security Update&#8221;<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"_uf_show_specific_survey":0,"_uf_disable_surveys":false,"footnotes":""},"categories":[20],"tags":[181,190,116,117],"class_list":["post-10374","post","type-post","status-publish","format-standard","hentry","category-hyper-v","tag-hyper-v","tag-security","tag-windows-server-2008","tag-windows-server-2008-r2"],"aioseo_notices":[],"jetpack_featured_media_url":"","amp_enabled":true,"_links":{"self":[{"href":"https:\/\/aidanfinn.com\/index.php?rest_route=\/wp\/v2\/posts\/10374","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/aidanfinn.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/aidanfinn.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/aidanfinn.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/aidanfinn.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=10374"}],"version-history":[{"count":0,"href":"https:\/\/aidanfinn.com\/index.php?rest_route=\/wp\/v2\/posts\/10374\/revisions"}],"wp:attachment":[{"href":"https:\/\/aidanfinn.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=10374"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/aidanfinn.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=10374"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/aidanfinn.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=10374"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}