Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2017-0147
HistoryMar 17, 2017 - 12:59 a.m.

CVE-2017-0147

2017-03-1700:59:04
CWE-200
[email protected]
web.nvd.nist.gov
1

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

5.5 Medium

AI Score

Confidence

High

0.971 High

EPSS

Percentile

99.8%

JSON

The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote attackers to obtain sensitive information from process memory via a crafted packets, aka “Windows SMB Information Disclosure Vulnerability.”

Affected configurations

NVD
Node
microsoftserver_message_blockMatch1.0
AND
microsoftwindows_10
OR
microsoftwindows_10Match1511
OR
microsoftwindows_10Match1607
OR
microsoftwindows_7Match-sp1
OR
microsoftwindows_8.1
OR
microsoftwindows_rt_8.1Match-
OR
microsoftwindows_server_2008Match-sp2
OR
microsoftwindows_server_2008Matchr2sp1
OR
microsoftwindows_server_2012Match-gold
OR
microsoftwindows_server_2012Matchr2
OR
microsoftwindows_server_2016Match-
OR
microsoftwindows_vistaMatch-sp2

Related

symantec 1
cve 1
securelist 1
mscve 1
checkpoint_advisories 1
cvelist 1
cisa_kev 1
prion 1
attackerkb 1
openvas 3
qualysblog 2
threatpost 1
packetstorm 5
zdt 6
trendmicroblog 2
kaspersky 3
rapid7community 8
seebug 1
mskb 11
f5 1
nessus 2
ics 1
symantec
symantec
Microsoft Windows SMB Server CVE-2017-0147 Information Disclosure Vulnerability
2017-03-14 00:00:00
cve
cve
CVE-2017-0147
2017-03-17 00:59:04
securelist
securelist
Bad Rabbit ransomware
2017-10-24 18:16:00
mscve
mscve
Windows SMB Information Disclosure Vulnerability
2017-03-14 07:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Windows SMB Information Disclosure (MS17-010: CVE-2017-0147)
2017-03-14 00:00:00
cvelist
cvelist
CVE-2017-0147
2017-03-17 00:00:00
cisa_kev
cisa_kev
Microsoft Windows SMBv1 Information Disclosure Vulnerability
2022-05-24 00:00:00
prion
prion
Information disclosure
2017-03-17 00:59:00
attackerkb
attackerkb
CVE-2017-0147
2017-03-17 00:00:00
openvas
openvas
Double Pulsar Infection Detect
2017-04-18 00:00:00
Microsoft Windows SMB Server Multiple Vulnerabilities-Remote (4013389)
2017-03-22 00:00:00
Microsoft Windows SMB Server Multiple Vulnerabilities (4013389)
2017-03-15 00:00:00
qualysblog
qualysblog
The Shadow Brokers Release Zero Day Exploit Tools
2017-04-15 07:11:21
Emotet Re-emerges with Help from TrickBot
2022-01-06 14:05:53
threatpost
threatpost
ShadowBrokers' Windows Zero-Days Already Patched
2017-04-17 14:06:34
packetstorm
packetstorm
MS17-010 EternalRomance / EternalSynergy / EternalChampion SMB Remote Windows Code Execution
2018-02-03 00:00:00
DOUBLEPULSAR Payload Execution / Neutralization
2019-10-01 00:00:00
Microsoft Windows MS17-010 SMB Remote Code Execution
2017-04-17 00:00:00
zdt
zdt
Microsoft Windows SMB MS17-010 EternalRomance / EternalSynergy / EternalChampion Remote Code Executi
2018-02-03 00:00:00
DOUBLEPULSAR - Payload Execution and Neutralization Exploit
2019-10-04 00:00:00
SMB DOUBLEPULSAR Remote Code Execution Exploit
2020-02-04 00:00:00
trendmicroblog
trendmicroblog
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of June 26, 2017
2017-06-30 12:00:57
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of May 15, 2017
2017-05-19 12:00:15
kaspersky
kaspersky
KLA10977 Multiple vulnerabilities in Microsoft Server Message Block (SMB)
2017-03-14 00:00:00
KLA11902 Multiple vulnerabilities in Microsoft Products (ESU)
2017-03-14 00:00:00
KLA10979 Multiple vulnerabilities in Microsoft Windows
2017-03-14 00:00:00
rapid7community
rapid7community
Scanning and Remediating WannaCry/MS17-010 in InsightVM and Nexpose
2017-05-15 18:25:42
Vulnerability Management Tips for the Shadow Brokers Leaked Exploits
2017-05-24 23:14:26
Petya-like ransomworm: Leveraging InsightVM and Nexpose for visibility into MS17-010
2017-08-03 16:56:04
seebug
seebug
ETERNALBLUE - Remote RCE via SMB & NBT (Windows XP to Windows 2012)
2017-04-15 00:00:00
mskb
mskb
MS17-010: Description of the security update for Windows SMB Server: March 14, 2017
2017-03-14 07:00:00
MS17-010: Security update for Windows SMB Server: March 14, 2017
2017-03-14 00:00:00
March 2017 Security Only Quality Update for Windows Server 2012
2017-03-14 07:00:00
f5
f5
K57181937 : Multiple Microsoft SMB (Wannacry/Wannacrypt/Petya/Goldeneye) vulnerabilities
2017-05-16 00:00:00
nessus
nessus
MS17-010: Security Update for Microsoft Windows SMB Server (4013389) (ETERNALBLUE) (ETERNALCHAMPION) (ETERNALROMANCE) (ETERNALSYNERGY) (WannaCry) (EternalRocks) (Petya) (uncredentialed check)
2017-03-20 00:00:00
MS17-010: Security Update for Microsoft Windows SMB Server (4013389) (ETERNALBLUE) (ETERNALCHAMPION) (ETERNALROMANCE) (ETERNALSYNERGY) (WannaCry) (EternalRocks) (Petya)
2017-03-15 00:00:00
ics
ics
Philips Intellispace Portal ISP Vulnerabilities
2018-02-27 12:00:00

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

5.5 Medium

AI Score

Confidence

High

0.971 High

EPSS

Percentile

99.8%

JSON
Related for NVD:CVE-2017-0147
symantec1cve1securelist1mscve1checkpoint_advisories1cvelist1cisa_kev1prion1attackerkb1openvas3qualysblog2threatpost1packetstorm5zdt6trendmicroblog2kaspersky3rapid7community8seebug1mskb11f51nessus2ics1