Security Vulnerabilities fixed in Local Security Authority Subsystem Service MS17-004

description-logoDescription

A denial of service vulnerability exists in the way the Local Security Authority Subsystem Service (LSASS) handles authentication requests. An attacker who successfully exploited the vulnerability could cause a denial of service on the target system's LSASS service, which triggers an automatic reboot of the system. The security update addresses the vulnerability by changing the way that LSASS handles specially crafted authentication requests.

affected-products-logoAffected Applications

Windows 7
Windows Server 2008 R2

CVE References

CVE-2017-0004