Endpoint Vulnerability

Windows DNSAPI Remote Code Execution Vulnerability

Description

A remote code execution vulnerability exists in Windows Domain Name System (DNS) DNSAPI.dll when it fails to properly handle DNS responses. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the Local System Account.

Affected Products

Windows 10,Windows 8,Windows RT 8.1,Windows Server 2012,Windows Server 2016

References

CVE-2017-11779,