CVE-2017-8543

Name of the Vulnerable Software and Affected Versions Microsoft Windows XP SP3 Microsoft Windows XP x64 XP2 Microsoft Windows Server 2003 SP2 Microsoft Windows Vista Microsoft Windows 7 SP1 Microsoft Windows Server 2008 SP2 and R2 SP1 Microsoft Windows 8 Microsoft Windows 8.1 and Windows RT 8.1 Microsoft Windows Server 2012 and R2 Microsoft Windows 10 versions Gold, 1511, 1607, and 1703 Microsoft Windows Server 2016

Description The issue is related to errors in the code of the Windows Search service, which can be exploited by an attacker to execute arbitrary code and gain unrestricted access to the system. This can be achieved by sending a specially crafted SMB message to the Windows Search service. The exploitation allows remote attackers to take control of the affected system when Windows Search fails to handle objects in memory.

Recommendations For Microsoft Windows XP SP3, apply the recommended patch to fix the issue. For Microsoft Windows XP x64 XP2, apply the recommended patch to fix the issue. For Microsoft Windows Server 2003 SP2, apply the recommended patch to fix the issue. For Microsoft Windows Vista, apply the recommended patch to fix the issue. For Microsoft Windows 7 SP1, apply the recommended patch to fix the issue. For Microsoft Windows Server 2008 SP2 and R2 SP1, apply the recommended patch to fix the issue. For Microsoft Windows 8, apply the recommended patch to fix the issue. For Microsoft Windows 8.1 and Windows RT 8.1, apply the recommended patch to fix the issue. For Microsoft Windows Server 2012 and R2, apply the recommended patch to fix the issue. For Microsoft Windows 10 versions Gold, 1511, 1607, and 1703, apply the recommended patch to fix the issue. For Microsoft Windows Server 2016, apply the recommended patch to fix the issue. As a temporary workaround, consider disabling the Windows Search service until a patch is available. Restrict access to the SMB protocol to minimize the risk of exploitation. Avoid using the Windows Search service until the issue is resolved.