Microsoft Windows SMB Server (MS17-010) Vulnerability
by CIRT Team
Description: Microsoft Windows SMB Server is prone to a remote code-execution vulnerability. Successful exploits will allow an attacker to execute arbitrary code on the target system. Failed attacks will cause denial of service conditions.
Related CVE’s: CVE-2017-0145, CVE-2017-0146, CVE-2017-0147, CVE-2017-0148
Vulnerable Versions:
- Microsoft Windows Vista x64 Edition Service Pack 2
- Microsoft Windows Vista Service Pack 2
- Microsoft Windows Server 2012 R2
- Microsoft Windows Server 2012
- Microsoft Windows Server 2008 R2 for x64-based Systems SP1
- Microsoft Windows Server 2008 R2 for Itanium-based Systems SP1
- Microsoft Windows Server 2008 for x64-based Systems SP2
- Microsoft Windows Server 2008 for Itanium-based Systems SP2
- Microsoft Windows Server 2008 for 32-bit Systems SP2
- Microsoft Windows RT 8.1
- Microsoft Windows 8.1 for x64-based Systems
- Microsoft Windows 8.1 for 32-bit Systems
- Microsoft Windows 7 for x64-based Systems SP1
- Microsoft Windows 7 for 32-bit Systems SP1
- Microsoft Windows 10 Version 1607 for x64-based Systems
- Microsoft Windows 10 Version 1607 for 32-bit Systems
- Microsoft Windows 10 version 1511 for x64-based Systems
- Microsoft Windows 10 version 1511 for 32-bit Systems
- Microsoft Windows 10 for x64-based Systems
- Microsoft Windows 10 for 32-bit Systems
Impact: Remote Code Execution
Mitigation: Updates are available. Please see the references for more information.
Reference URL’s:
- https://technet.microsoft.com/library/security/ms17-010
- https://www.wired.com/beyond-the-beyond/2017/04/double-pulsar-nsa-leaked-hacks-wild/
- http://www.securityfocus.com/bid/96705/info
- http://www.securityfocus.com/bid/96707/info
- http://www.securityfocus.com/bid/96709/info
- http://www.securityfocus.com/bid/96706/info
Recommended Posts
Cyber Threat Alert: Surge in Attacks via Compromised Third-Party Service Providers
08 Feb 2024 - Articles, English articles, Security Advisories & Alerts
Subscribe here
MEMBER OF:
