Vulnerability Details CVE-2017-0147
The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote attackers to obtain sensitive information from process memory via a crafted packets, aka "Windows SMB Information Disclosure Vulnerability."
Exploit prediction scoring system (EPSS) score
EPSS Score 0.924
EPSS Ranking 99.7%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 4.3
Proposed Action
The SMBv1 server in Microsoft Windows allows remote attackers to obtain sensitive information from process memory via a crafted packet.
Ransomware Campaign
Known
References
- http://packetstormsecurity.com/files/154690/DOUBLEPULSAR-Payload-Execution-Neutralization.html
- http://packetstormsecurity.com/files/156196/SMB-DOUBLEPULSAR-Remote-Code-Execution.html
- http://www.securityfocus.com/bid/96709
- http://www.securitytracker.com/id/1037991
- https://cert-portal.siemens.com/productcert/pdf/ssa-701903.pdf
- https://cert-portal.siemens.com/productcert/pdf/ssa-966341.pdf
- https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0147
- https://www.exploit-db.com/exploits/41891/
- https://www.exploit-db.com/exploits/41987/
- https://www.exploit-db.com/exploits/43970/
- http://packetstormsecurity.com/files/154690/DOUBLEPULSAR-Payload-Execution-Neutralization.html
- http://packetstormsecurity.com/files/156196/SMB-DOUBLEPULSAR-Remote-Code-Execution.html
- http://www.securityfocus.com/bid/96709
- http://www.securitytracker.com/id/1037991
- https://cert-portal.siemens.com/productcert/pdf/ssa-701903.pdf
- https://cert-portal.siemens.com/productcert/pdf/ssa-966341.pdf
- https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0147
- https://www.exploit-db.com/exploits/41891/
- https://www.exploit-db.com/exploits/41987/
- https://www.exploit-db.com/exploits/43970/
Products affected by CVE-2017-0147
-
cpe:2.3:h:siemens:acuson_p300:-
-
cpe:2.3:h:siemens:acuson_p500:-
-
cpe:2.3:h:siemens:acuson_sc2000:-
-
cpe:2.3:h:siemens:acuson_x700:-
-
cpe:2.3:h:siemens:syngo_sc2000:-
-
cpe:2.3:h:siemens:tissue_preparation_system:-
-
cpe:2.3:h:siemens:versant_kpcr_molecular_system:-
-
cpe:2.3:h:siemens:versant_kpcr_sample_prep:-
-
cpe:2.3:o:microsoft:windows_10_1507:-
-
cpe:2.3:o:microsoft:windows_10_1511:-
-
cpe:2.3:o:microsoft:windows_10_1607:-
-
cpe:2.3:o:microsoft:windows_7:-
-
cpe:2.3:o:microsoft:windows_8.1:-
-
cpe:2.3:o:microsoft:windows_rt_8.1:-
-
cpe:2.3:o:microsoft:windows_server_2008:-
-
cpe:2.3:o:microsoft:windows_server_2008:r2
-
cpe:2.3:o:microsoft:windows_server_2012:-
-
cpe:2.3:o:microsoft:windows_server_2012:r2
-
cpe:2.3:o:microsoft:windows_server_2016:-
-
cpe:2.3:o:microsoft:windows_vista:-
-
cpe:2.3:o:siemens:acuson_p300_firmware:13.02
-
cpe:2.3:o:siemens:acuson_p300_firmware:13.03
-
cpe:2.3:o:siemens:acuson_p300_firmware:13.20
-
cpe:2.3:o:siemens:acuson_p300_firmware:13.21
-
cpe:2.3:o:siemens:acuson_p500_firmware:va10
-
cpe:2.3:o:siemens:acuson_p500_firmware:vb10
-
cpe:2.3:o:siemens:acuson_sc2000_firmware:4.0
-
cpe:2.3:o:siemens:acuson_sc2000_firmware:5.0a
-
cpe:2.3:o:siemens:acuson_x700_firmware:1.0
-
cpe:2.3:o:siemens:acuson_x700_firmware:1.1
-
cpe:2.3:o:siemens:syngo_sc2000_firmware:4.0
-
cpe:2.3:o:siemens:syngo_sc2000_firmware:5.0a
-
cpe:2.3:o:siemens:tissue_preparation_system_firmware:-
-
cpe:2.3:o:siemens:versant_kpcr_molecular_system_firmware:-
-
cpe:2.3:o:siemens:versant_kpcr_sample_prep_firmware:-