Main Vulnerability Database Vulnerabilities #VU6014

#VU6014 Improper input validation in Windows and Windows Server - CVE-2017-0146

Published: March 14, 2017 / Updated: July 15, 2020

Vulnerability identifier: #VU6014

Vulnerability risk: Critical

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A/U:Red

CVE-ID: CVE-2017-0146

CWE-ID: CWE-20

Exploitation vector: Remote access

Exploit availability: The vulnerability is being exploited in the wild

Vulnerable software:
Windows
Windows Server

Software vendor:
Microsoft

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to an error when parsing requests in Microsoft Server Message Block 1.0 (SMBv1) server. A remote unauthenticated attacker can send specially crafted SMB packets and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Note: this vulnerability has been exploited in the wild and is publicly known as EternalChampion exploit.

Remediation

Install updates from vendor's website.

External links

https://technet.microsoft.com/en-us/library/security/MS17-010

#VU6014 Improper input validation in Windows and Windows Server - CVE-2017-0146

Description

Remediation

External links

Please verify you're human