CVE-2017-0145

Name of the Vulnerable Software and Affected Versions microsoft server message block (1.0)

Description The issue exists due to insufficient input validation in the SMBv1 protocol of the Microsoft Windows operating system. This allows a remote attacker to execute arbitrary code using specially crafted packets. The vulnerability can be exploited by remote attackers, potentially affecting the system. It has been used in real-world incidents, such as the Bad Rabbit Ransomware campaign, which targeted the financial industry in countries including Russia, Ukraine, and Japan.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.