CVE-2017-0016NULL Pointer Dereference in Corporation Smbv2 Smbv3

CWE-476NULL Pointer Dereference10 documents5 sources
Severity
5.9MEDIUMNVD
EPSS
49.2%
top 2.21%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
14
Microsoft Corporation Smbv2 Smbv3Microsoft Windows 10Microsoft Windows Server 2012+11 more
Timeline
PublishedMar 17
Latest updateMay 17

Description

Microsoft Windows 10 Gold, 1511, and 1607; Windows 8.1; Windows RT 8.1; Windows Server 2012 R2, and Windows Server 2016 do not properly handle certain requests in SMBv2 and SMBv3 packets, which allows remote attackers to execute arbitrary code via a crafted SMBv2 or SMBv3 packet to the Server service, aka "SMBv2/SMBv3 Null Dereference Denial of Service Vulnerability."

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 2.2 | Impact: 3.6

Affected Packages14 packages

CVEListV5microsoft_corporation/smbv2_smbv3Windows 10 Gold, 1511, and 1607; Windows 8.1; Windows RT 8.1; Windows Server 2012 R2, and Windows Server 2016
NVDmicrosoft/windows_101511, 1607+1

Patches

Patch: portal.msrc.microsoft.comPatch: portal.msrc.microsoft.com

🔴Vulnerability Details

1
GHSA
GHSA-vqj7-84pw-wc4r: Microsoft Windows 10 Gold, 1511, and 1607; Windows 82022-05-17

🔍Detection Rules

1
Suricata
ET DOS SMB Tree_Connect Stack Overflow Attempt (CVE-2017-0016)2017-02-03

📋Vendor Advisories

1
Microsoft
Windows Denial of Service Vulnerability2017-03-14

🕵️Threat Intelligence

6
Trendmicro
March 2017 Patch Tuesday: 18 Security Bulletins2017-03-15
Trendmicro
March 2017 Patch Tuesday: 18 Security Bulletins2017-03-15
Trendmicro
March 2017 Patch Tuesday: 18 Security Bulletins2017-03-15
Trendmicro
March 2017 Patch Tuesday: 18 Security Bulletins2017-03-15
Trendmicro
March 2017 Patch Tuesday: 18 Security Bulletins2017-03-15