CVE-2017-0147
The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607...
Description
This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov
In plain language
AI Act nowCVE-2017-0147 is a serious information-disclosure bug in the SMBv1 server on many older Microsoft Windows versions, and a typical small business should act now because it has a very high likelihood of being exploited and is tied to ransomware activity.
What to do
- Turn off SMBv1 (and ensure file sharing uses newer SMB versions) on affected Windows machines. 2) Update/patch your Windows systems where applicable; if you can’t update, isolate the machine from untrusted networks and limit network access to file sharing ports. 3) Verify with your IT person that SMBv1 is not enabled on any exposed servers or PCs that provide shared folders.
CVSS Vector Breakdown
AV:NAttack VectorAC:LAttack ComplexityPR:NPrivileges RequiredUI:NUser InteractionS:UScopeC:HConfidentialityI:NIntegrityA:NAvailabilityWeaknesses
Affected Products
Exploitability
Required action: Apply updates per vendor instructions.
Exploit details including PoC links, Metasploit modules, and scanner templates are available after registration.
View exploit detailsReferences
Timeline
Unlock Complete Vulnerability Intelligence
Get the full picture for CVE-2017-0147 and every CVE in our database. Create a free account — no credit card required.
Create Free Account