- Home
- CVEs with nessus.description==The+remote+Windows+host+has+Microsoft+Server+Message+Block+1.0+%28SMBv1%29+enabled.+It+is%2C+therefore%2C+affected+by+multiple+vulnerabilities+%3A%0A%0A++-+Multiple+information+disclosure+vulnerabilities+exist+++++in+Microsoft+Server+Message+Block+1.0+%28SMBv1%29+due+to+++++improper+handling+of+SMBv1+packets.+An+unauthenticated%2C+++++remote+attacker+can+exploit+these+vulnerabilities%2C+via+a+++++specially+crafted+SMBv1+packet%2C+to+disclose+sensitive+++++information.+%28CVE-2017-0267%2C+CVE-2017-0268%2C+++++CVE-2017-0270%2C+CVE-2017-0271%2C+CVE-2017-0274%2C+++++CVE-2017-0275%2C+CVE-2017-0276%29%0A%0A++-+Multiple+denial+of+service+vulnerabilities+exist+in+++++Microsoft+Server+Message+Block+1.0+%28SMBv1%29+due+to+++++improper+handling+of+requests.+An+unauthenticated%2C+++++remote+attacker+can+exploit+these+vulnerabilities%2C+via+a+++++specially+crafted+SMB+request%2C+to+cause+the+system+to+++++stop+responding.+%28CVE-2017-0269%2C+CVE-2017-0273%2C+++++CVE-2017-0280%29%0A%0A++-+Multiple+remote+code+execution+vulnerabilities+exist+in+++++Microsoft+Server+Message+Block+1.0+%28SMBv1%29+due+to+++++improper+handling+of+SMBv1+packets.+An+unauthenticated%2C+++++remote+attacker+can+exploit+these+vulnerabilities%2C+via+a+++++specially+crafted+SMBv1+packet%2C+to+execute+arbitrary+++++code.+%28CVE-2017-0272%2C+CVE-2017-0277%2C+CVE-2017-0278%2C+++++CVE-2017-0279%29%0A%0ADepending+on+the+host%27s+security+policy+configuration%2C+this+plugin+cannot+always+correctly+determine+if+the+Windows+host+is+vulnerable+if+the+host+is+running+a+later+Windows+version+%28i.e.%2C+Windows+8.1%2C+10%2C+2012%2C+2012+R2%2C+and+2016%29+specifically+that+named+pipes+and+shares+are+allowed+to+be+accessed+remotely+and+anonymously.+Tenable+does+not+recommend+this+configuration%2C+and+the+hosts+should+be+checked+locally+for+patches+with+one+of+the+following+plugins%2C+depending+on+the+Windows+version+%3A+100054%2C+100055%2C+100057%2C+100059%2C+100060%2C+or+100061
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top