CVE-2017-0272Corporation Server Message Block 1.0 vulnerability

11 documents4 sources
Severity
8.1HIGHNVD
NVD7.0
EPSS
5.5%
top 9.73%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
16
Microsoft Corporation Server Message Block 1.0Microsoft Windows 10Microsoft Windows Server 2008+13 more
Timeline
PublishedMay 12
Latest updateMay 13

Description

The Microsoft Server Message Block 1.0 (SMBv1) server on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an attacker to execute remote code by the way it handles certain requests, aka "Windows SMB Remote Code Execution Vulnerability". This CVE ID is unique from CVE-2017-0277, CVE-2017-0278, and CVE-2017-0279.

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 2.2 | Impact: 5.9

Affected Packages15 packages

Patches

Patch: portal.msrc.microsoft.comPatch: portal.msrc.microsoft.com

🔴Vulnerability Details

4
GHSA
GHSA-h2f6-5qrg-62w8: The Microsoft Server Message Block 12022-05-13
GHSA
GHSA-hrj7-qgrm-pp34: The Microsoft Server Message Block 12022-05-13
GHSA
GHSA-fgwg-p5ff-2987: The Microsoft Server Message Block 12022-05-13
GHSA
GHSA-5cgh-qxff-3rrw: The Microsoft Server Message Block 12022-05-13

📋Vendor Advisories

1
Microsoft
Windows SMB Remote Code Execution Vulnerability2017-05-09

🕵️Threat Intelligence

2
Talos
Microsoft Patch Tuesday - May 20172017-05-10
Talos
Microsoft Patch Tuesday - May 20172017-05-10