CVE-2017-11780

Name of the Vulnerable Software and Affected Versions Microsoft Windows Server 2008 SP2 and R2 SP1 Microsoft Windows 7 SP1 Microsoft Windows 8.1 Microsoft Windows Server 2012 Gold and R2 Microsoft Windows RT 8.1 Microsoft Windows 10 versions 1507 through 1703 Microsoft Windows Server 2016

Description The issue arises from the Server Message Block 1.0 (SMBv1) failing to properly handle certain requests, allowing a remote code execution. This enables remote attackers to execute arbitrary code and affect the system. A remote attacker could send a specially crafted packet to a targeted SMBv1 server, exploiting the vulnerability to gain the ability to execute code on the target server.

Recommendations For Microsoft Windows Server 2008 SP2 and R2 SP1, consider disabling SMBv1 until a patch is available. For Microsoft Windows 7 SP1, restrict access to SMBv1 servers to minimize the risk of exploitation. For Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10, and Windows Server 2016, avoid using SMBv1 for file and printer sharing until the issue is resolved.