Title

Microsoft Virtual Machine Manager Privilege Escalation Vulnerability (MS15-017) (Cat II impact)

Discussion

Microsoft has released a security advisory addressing a vulnerability in Virtual Machine Manager (VMM). Virtual Machine Manager (VMM) is a management solution for the virtualized datacenter used to configure and manage virtualization host, networking, and storage resources to create and deploy virtual machines and services to private clouds. To exploit this vulnerability, an attacker would log on a vulnerable VMM server. If successfully exploited, this vulnerability would allow an attacker to obtain administrative privileges to the VMM server and take control of all virtual machines controlled by the VMM server.

Check Content

Fix Text

Additional Identifiers

Rule ID:

Vulnerability ID: V-58749

Group Title:

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.