CVE-2016-3345

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions prior to the fixed version Windows Vista SP2 Windows Server 2008 SP2 and R2 SP1 Windows 7 SP1 Windows 8.1 Windows Server 2012 Gold and R2 Windows RT 8.1 Windows 10 Gold, 1511, and 1607

Description The issue is related to insufficient access control in the SMBv1 server, allowing remote attackers to execute arbitrary code via crafted packets. This can potentially lead to the execution of malicious code on the affected system. A denial-of-service vulnerability also exists, which can affect the system.

Recommendations For Windows Vista SP2, apply the relevant security patch to fix the issue. For Windows Server 2008 SP2 and R2 SP1, apply the relevant security patch to fix the issue. For Windows 7 SP1, apply the relevant security patch to fix the issue. For Windows 8.1, apply the relevant security patch to fix the issue. For Windows Server 2012 Gold and R2, apply the relevant security patch to fix the issue. For Windows RT 8.1, apply the relevant security patch to fix the issue. For Windows 10 Gold, 1511, and 1607, apply the relevant security patch to fix the issue. As a temporary workaround, consider disabling the SMBv1 server until a patch is available. Restrict access to the SMBv1 server to minimize the risk of exploitation.