Description
The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote attackers to obtain sensitive information from process memory via a crafted packets, aka "Windows SMB Information Disclosure Vulnerability."
CVSS breakdown
CVSS 3.1
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None
Affected products
- Microsoft Corporation / Windows SMBThe SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607; and Windows Server 2016 – The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607; and Windows Server 2016
References
- EXPLOIThttps://www.exploit-db.com/exploits/41891/
- MISChttp://www.securitytracker.com/id/1037991
- MISChttp://www.securityfocus.com/bid/96709
- MISChttps://cert-portal.siemens.com/productcert/pdf/ssa-701903.pdf
- VENDOR_ADVISORYhttps://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02
- EXPLOIThttps://www.exploit-db.com/exploits/41987/
- MISChttps://cert-portal.siemens.com/productcert/pdf/ssa-966341.pdf
- EXPLOIThttps://www.exploit-db.com/exploits/43970/
- VENDOR_ADVISORYhttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0147
- EXPLOIThttp://packetstormsecurity.com/files/154690/DOUBLEPULSAR-Payload-Execution-Neutralization.html
- EXPLOIThttp://packetstormsecurity.com/files/156196/SMB-DOUBLEPULSAR-Remote-Code-Execution.html