Lucene search

Huawei TechnologiesHUAWEI-SA-20170513-01-WINDOWS

HistoryMay 13, 2017 - 12:00 a.m.

Security Advisory - 'WannaCry ransomware' Vulnerabilities in Microsoft Windows Systems

2017-05-1300:00:00

Huawei Technologies

www.huawei.com

0.974 High

EPSS

Percentile

99.9%

JSON

Huawei noticed that the WannaCry ransomware targeting at Windows exploits multiple vulnerabilities in Windows Server Message Block v1 (SMBv1).

These vulnerabilities were disclosed by Microsoft in Microsoft security bulletin MS17-010 on March 14. Successful exploit of these vulnerabilities could allow an attacker to remotely execute arbitrary code on affected computers. (Vulnerability ID: HWPSIRT-2017-05052,HWPSIRT-2017-05053,HWPSIRT-2017-05054,HWPSIRT-2017-05055 and HWPSIRT-2017-05056)

The five vulnerabilities have been assigned five Common Vulnerabilities and Exposures (CVE) IDs: CVE-2017-0143, CVE-2017-0144, CVE-2017-0145, CVE-2017-0146 and CVE-2017-0148.

Huawei has released solutions to fix all these vulnerabilities. This advisory is available at the following link:
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170513-01-windows-en

CPENameOperatorVersion
●bh622 v2eq●L2800
●bh640 v2eq●N2000
●bigdata applianceeq18500
●ch121eq18500
●ch121eqV3
●ch140eq18500F
●ch140eqV3
●ch220eq18800
●ch221eq18800
●ch221eqV3

Name	Operator	Version
●bh622 v2	eq	●L2800
●bh640 v2	eq	●N2000
●bigdata appliance	eq	18500
●ch121	eq	18500
●ch121	eq	V3
●ch140	eq	18500F
●ch140	eq	V3
●ch220	eq	18800
●ch221	eq	18800
●ch221	eq	V3

Rows per page:

1-10 of 301

prion

Remote code execution

2017-03-17 00:59:00

Remote code execution

2017-03-17 00:59:00

Remote code execution

2017-03-17 00:59:00

cvelist

CVE-2017-0144

2017-03-17 00:00:00

CVE-2017-0146

2017-03-17 00:00:00

CVE-2017-0143

2017-03-17 00:00:00

attackerkb

CVE-2017-0148

2017-03-17 00:00:00

CVE-2017-0144 (MS17-010)

2017-03-17 00:00:00

CVE-2017-0143

2017-03-17 00:00:00

zdt

Microsoft Windows - SrvOs2FeaToNt SMB Remote Code Execution (MS17-010) Exploit

2017-05-10 00:00:00

Microsoft Windows - Uncredentialed SMB RCE (MS17-010) Exploit

2017-04-17 00:00:00

SMB DOUBLEPULSAR Remote Code Execution Exploit

2020-02-04 00:00:00

rapid7community

Scanning and Remediating WannaCry/MS17-010 in InsightVM and Nexpose

2017-05-15 18:25:42

Vulnerability Management Tips for the Shadow Brokers Leaked Exploits

2017-05-24 23:14:26

Petya-like ransomworm: Leveraging InsightVM and Nexpose for visibility into MS17-010

2017-08-03 16:56:04

packetstorm

Microsoft Windows MS17-010 SMB Remote Code Execution

2017-04-17 00:00:00

MS17-010 EternalBlue SMB Remote Windows Kernel Pool Corruption

2017-05-17 00:00:00

SMB DOUBLEPULSAR Remote Code Execution

2020-02-04 00:00:00

openvas

Microsoft Windows SMB Server Multiple Vulnerabilities (4013389)

2017-03-15 00:00:00

Microsoft Windows SMB Server Multiple Vulnerabilities-Remote (4013389)

2017-03-22 00:00:00

Double Pulsar Infection Detect

2017-04-18 00:00:00

mskb

MS17-010: Description of the security update for Windows SMB Server: March 14, 2017

2017-03-14 07:00:00

MS17-010: Security update for Windows SMB Server: March 14, 2017

2017-03-14 00:00:00

March 2017 Security Only Quality Update for Windows Server 2012

2017-03-14 07:00:00

seebug

ETERNALBLUE - Remote RCE via SMB & NBT (Windows XP to Windows 2012)

2017-04-15 00:00:00

EternalChampion - Windows SMB Remote Code Execution Vulnerability (CVE-2017-0146)

2017-04-17 00:00:00

kaspersky

KLA10977 Multiple vulnerabilities in Microsoft Server Message Block (SMB)

2017-03-14 00:00:00

KLA11902 Multiple vulnerabilities in Microsoft Products (ESU)

2017-03-14 00:00:00

KLA10979 Multiple vulnerabilities in Microsoft Windows

2017-03-14 00:00:00

K57181937 : Multiple Microsoft SMB (Wannacry/Wannacrypt/Petya/Goldeneye) vulnerabilities

2017-05-16 00:00:00

nessus

MS17-010: Security Update for Microsoft Windows SMB Server (4013389) (ETERNALBLUE) (ETERNALCHAMPION) (ETERNALROMANCE) (ETERNALSYNERGY) (WannaCry) (EternalRocks) (Petya)

2017-03-15 00:00:00

MS17-010: Security Update for Microsoft Windows SMB Server (4013389) (ETERNALBLUE) (ETERNALCHAMPION) (ETERNALROMANCE) (ETERNALSYNERGY) (WannaCry) (EternalRocks) (Petya) (uncredentialed check)

2017-03-20 00:00:00

mmpc

New ransomware, old techniques: Petya adds worm capabilities

2017-06-28 06:57:43

Ransomware 1H 2017 review: Global outbreaks reinforce the value of security hygiene

2017-09-06 14:58:36

WannaCrypt ransomware worm targets out-of-date systems

2017-05-13 06:40:39

canvas

Immunity Canvas: MS17_010

2017-03-17 00:59:00

Immunity Canvas: ETERNALBLUE

2017-03-17 00:59:00

threatpost

PyRoMine Uses NSA Exploit for Monero Mining and Backdoors

2018-04-26 18:21:13

Calypso APT Emerges from the Shadows to Target Governments

2019-10-31 18:55:02

EternalBlue Exploit Used in Retefe Banking Trojan Campaign

2017-09-22 14:02:28

thn

Necro Python Malware Upgrades With New Exploits and Crypto Mining Capabilities

2021-06-03 17:01:00

Cyberspies Are Using Leaked NSA Hacking Tools to Spy On Hotels Guests

2017-08-11 04:55:00

WannaCry Ransomware: Everything You Need To Know Immediately

2017-05-15 05:11:00

rapid7blog

Conti Ransomware Group Internal Chats Leaked Over Russia-Ukraine Conflict

2022-03-01 19:15:58

Metasploit Wrap-Up

2021-03-05 17:20:43

Open-Source Security: Getting to the Root of the Problem

2022-01-19 18:02:43

trendmicroblog

TippingPoint Threat Intelligence and Zero-Day Coverage – Week of June 26, 2017

2017-06-30 12:00:57

Double Whammy: When One Attack Masks Another Attack

2017-11-20 16:29:06

TippingPoint Threat Intelligence and Zero-Day Coverage – Week of May 15, 2017

2017-05-19 12:00:15

saint

Windows SMBv1 Remote Command Execution

2017-04-26 00:00:00

Windows SMBv1 Remote Command Execution

2017-04-26 00:00:00

Windows SMBv1 Remote Command Execution

2017-04-26 00:00:00

mscve

Windows SMB Remote Code Execution Vulnerability

2017-03-14 07:00:00

Windows SMB Remote Code Execution Vulnerability

2017-03-14 07:00:00

Windows SMB Remote Code Execution Vulnerability

2017-03-14 07:00:00

cisa_kev

Microsoft SMBv1 Server Remote Code Execution Vulnerability

2022-04-06 00:00:00

Microsoft Windows Server Message Block (SMBv1) Remote Code Execution Vulnerability

2021-11-03 00:00:00

Microsoft SMBv1 Remote Code Execution Vulnerability

2022-02-10 00:00:00

cve

CVE-2017-0148

2017-03-17 00:59:04

CVE-2017-0143

2017-03-17 00:59:03

CVE-2017-0144

2017-03-17 00:59:04

talosblog

Cisco Coverage for Adylkuzz, Uiwix, and EternalRocks

2017-05-22 15:14:00

checkpoint_advisories

Microsoft Windows SMB Remote Code Execution (MS17-010: CVE-2017-0148)

2017-05-16 00:00:00

Microsoft Windows SMB Remote Code Execution (MS17-010: CVE-2017-0143)

2017-03-14 00:00:00

Microsoft Windows SMB Remote Code Execution (MS17-010: CVE-2017-0144)

2017-03-14 00:00:00

symantec

Microsoft Windows SMB Server CVE-2017-0148 Remote Code Execution Vulnerability

2017-03-14 00:00:00

Microsoft Windows SMB Server CVE-2017-0143 Remote Code Execution Vulnerability

2017-03-14 00:00:00

Microsoft Windows SMB Server CVE-2017-0145 Remote Code Execution Vulnerability

2017-03-14 00:00:00

carbonblack

CB TAU Technical Analysis: DLTMiner Campaign Targeting Corporations in Asia

2019-07-23 13:47:50

myhack58

The SMB vulnerability triggered“bloodshed”, far more than WannaCry-vulnerability warning-the black bar safety net

2017-05-23 00:00:00

malwarebytes

How threat actors are using SMB vulnerabilities

2018-12-14 16:00:00

Threat spotlight: the curious case of Ryuk ransomware

2019-12-12 22:33:53

avleonov

Downloading entire Vulners.com database in 5 minutes

2017-08-09 17:49:03

Petya the Great and why *they* don’t patch vulnerabilities

2017-06-29 21:29:50

Is Vulnerability Management more about Vulnerabilities or Management?

2020-02-11 13:46:54

trellix

How Groove Gang is Shaking up the RAAS to Empower Affiliates

2021-09-08 00:00:00

How Groove Gang is Shaking up the RAAS to Empower Affiliates

2021-09-08 00:00:00

Connected Healthcare: A Cybersecurity Battlefield We Must Win

2022-06-06 00:00:00

kitploit

Eternal - An internet scanner for Eternal Blue [exploit CVE-2017-0144]

2017-07-22 20:30:00

qualysblog

The Rise of Ransomware

2021-10-05 12:50:00

Conti Ransomware

2021-11-18 17:17:56

Emotet Re-emerges with Help from TrickBot

2022-01-06 14:05:53

fireeye

CVE-2017-10271 Used to Deliver CryptoMiners: An Overview of Techniques Used Post-Exploitation and Pre-Mining

2018-02-15 16:30:00

CVE-2017-10271 Used to Deliver CryptoMiners: An Overview of Techniques Used Post-Exploitation and Pre-Mining

2018-02-15 11:30:00

ics

Enhancing Cyber Resilience: Insights from the CISA Healthcare and Public Health Sector Risk and Vulnerability Assessment

2023-12-15 12:00:00

Philips Intellispace Portal ISP Vulnerabilities

2018-02-27 12:00:00

Baxter ExactaMix (Update A)

2020-07-28 12:00:00

securelist

A mining multitool

2018-07-26 10:00:25

APT trends report Q2 2019

2019-08-01 10:00:05

nmap

smb-vuln-ms17-010 NSE Script

2017-05-27 07:57:34

ibm

Security Bulletin: Multiple vulnerabilities in Cloud Pak System

2019-10-24 21:43:28

cisa

CISA Adds 15 Known Exploited Vulnerabilities to Catalog

2022-02-10 00:00:00

mssecure

When coin miners evolve, Part 2: Hunting down LemonDuck and LemonCat attacks

2021-07-29 19:00:59

When coin miners evolve, Part 1: Exposing LemonDuck and LemonCat, modern mining malware infrastructure

2021-07-22 16:00:57

0.974 High

EPSS

Percentile

99.9%

JSON

Security Advisory - 'WannaCry ransomware' Vulnerabilities in Microsoft Windows Systems

Related