CVE-2017-0147

Microsoft Windows SMBv1 Information Disclosure Vulnerability

Severity Score

7.5

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

Yes

*KEV

Decision

*SSVC

Descriptions

The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote attackers to obtain sensitive information from process memory via a crafted packets, aka "Windows SMB Information Disclosure Vulnerability."

El servidor SMBv1 en Microsoft Windows Vista SP2; Windows Server 2008 SP2 y R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold y R2; Windows RT 8.1; y Windows 10 Gold, 1511 y 1607; y Windows Server 2016 permite a atacantes remotos obtener información sensible de la memoria del proceso a través de paquetes manipulados, vulnerabilidad también conocida como "Windows SMB Information Disclosure Vulnerability".

The SMBv1 server in Microsoft Windows allows remote attackers to obtain sensitive information from process memory via a crafted packet.

*Credits: N/A

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

Attack Vector

Network

Attack Complexity

Medium

Authentication

None

Confidentiality

Partial

Integrity

None

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2016-09-09 CVE Reserved
2017-03-17 CVE Published
2019-10-02 First Exploit
2022-05-24 Exploited in Wild
2022-06-14 KEV Due Date
2024-08-05 CVE Updated
2024-11-02 EPSS Updated

CWE

CAPEC

References (19)

URL	Tag	Source
http://www.securityfocus.com/bid/96709	Broken Link
http://www.securitytracker.com/id/1037991	Broken Link
https://cert-portal.siemens.com/productcert/pdf/ssa-701903.pdf	Third Party Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-966341.pdf	Third Party Advisory
https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02	Third Party Advisory
https://zerosum0x0.blogspot.com/2017/04/doublepulsar-initial-smb-backdoor-ring.html
https://countercept.com/blog/analyzing-the-doublepulsar-kernel-dll-injection-technique
https://www.countercept.com/blog/doublepulsar-usermode-analysis-generic-reflective-dll-loader
https://github.com/countercept/doublepulsar-detection-script
https://github.com/countercept/doublepulsar-c2-traffic-decryptor
https://gist.github.com/msuiche/50a36710ee59709d8c76fa50fc987be1

URL	Date	SRC
https://www.exploit-db.com/exploits/41891	2024-08-05
https://www.exploit-db.com/exploits/47456	2019-10-02
https://www.exploit-db.com/exploits/43970	2024-08-05
https://www.exploit-db.com/exploits/41987	2024-08-05
https://github.com/RobertoLeonFR-ES/Exploit-Win32.CVE-2017-0147.A	2022-01-04
http://packetstormsecurity.com/files/154690/DOUBLEPULSAR-Payload-Execution-Neutralization.html	2024-08-05
http://packetstormsecurity.com/files/156196/SMB-DOUBLEPULSAR-Remote-Code-Execution.html	2024-08-05

URL	Date	SRC
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0147	2024-07-02

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Siemens Search vendor "Siemens"	Acuson P300 Firmware Search vendor "Siemens" for product "Acuson P300 Firmware"	13.02 Search vendor "Siemens" for product "Acuson P300 Firmware" and version "13.02"	-	Affected	in	Siemens Search vendor "Siemens"	Acuson P300 Search vendor "Siemens" for product "Acuson P300"	-	-	Safe
Siemens Search vendor "Siemens"	Acuson P300 Firmware Search vendor "Siemens" for product "Acuson P300 Firmware"	13.03 Search vendor "Siemens" for product "Acuson P300 Firmware" and version "13.03"	-	Affected	in	Siemens Search vendor "Siemens"	Acuson P300 Search vendor "Siemens" for product "Acuson P300"	-	-	Safe
Siemens Search vendor "Siemens"	Acuson P300 Firmware Search vendor "Siemens" for product "Acuson P300 Firmware"	13.20 Search vendor "Siemens" for product "Acuson P300 Firmware" and version "13.20"	-	Affected	in	Siemens Search vendor "Siemens"	Acuson P300 Search vendor "Siemens" for product "Acuson P300"	-	-	Safe
Siemens Search vendor "Siemens"	Acuson P300 Firmware Search vendor "Siemens" for product "Acuson P300 Firmware"	13.21 Search vendor "Siemens" for product "Acuson P300 Firmware" and version "13.21"	-	Affected	in	Siemens Search vendor "Siemens"	Acuson P300 Search vendor "Siemens" for product "Acuson P300"	-	-	Safe
Siemens Search vendor "Siemens"	Acuson P500 Firmware Search vendor "Siemens" for product "Acuson P500 Firmware"	va10 Search vendor "Siemens" for product "Acuson P500 Firmware" and version "va10"	-	Affected	in	Siemens Search vendor "Siemens"	Acuson P500 Search vendor "Siemens" for product "Acuson P500"	-	-	Safe
Siemens Search vendor "Siemens"	Acuson P500 Firmware Search vendor "Siemens" for product "Acuson P500 Firmware"	vb10 Search vendor "Siemens" for product "Acuson P500 Firmware" and version "vb10"	-	Affected	in	Siemens Search vendor "Siemens"	Acuson P500 Search vendor "Siemens" for product "Acuson P500"	-	-	Safe
Siemens Search vendor "Siemens"	Acuson Sc2000 Firmware Search vendor "Siemens" for product "Acuson Sc2000 Firmware"	>= 4.0 < 4.0e Search vendor "Siemens" for product "Acuson Sc2000 Firmware" and version " >= 4.0 < 4.0e"	-	Affected	in	Siemens Search vendor "Siemens"	Acuson Sc2000 Search vendor "Siemens" for product "Acuson Sc2000"	-	-	Safe
Siemens Search vendor "Siemens"	Acuson Sc2000 Firmware Search vendor "Siemens" for product "Acuson Sc2000 Firmware"	5.0a Search vendor "Siemens" for product "Acuson Sc2000 Firmware" and version "5.0a"	-	Affected	in	Siemens Search vendor "Siemens"	Acuson Sc2000 Search vendor "Siemens" for product "Acuson Sc2000"	-	-	Safe
Siemens Search vendor "Siemens"	Acuson X700 Firmware Search vendor "Siemens" for product "Acuson X700 Firmware"	1.0 Search vendor "Siemens" for product "Acuson X700 Firmware" and version "1.0"	-	Affected	in	Siemens Search vendor "Siemens"	Acuson X700 Search vendor "Siemens" for product "Acuson X700"	-	-	Safe
Siemens Search vendor "Siemens"	Acuson X700 Firmware Search vendor "Siemens" for product "Acuson X700 Firmware"	1.1 Search vendor "Siemens" for product "Acuson X700 Firmware" and version "1.1"	-	Affected	in	Siemens Search vendor "Siemens"	Acuson X700 Search vendor "Siemens" for product "Acuson X700"	-	-	Safe
Siemens Search vendor "Siemens"	Syngo Sc2000 Firmware Search vendor "Siemens" for product "Syngo Sc2000 Firmware"	>= 4.0 < 4.0e Search vendor "Siemens" for product "Syngo Sc2000 Firmware" and version " >= 4.0 < 4.0e"	-	Affected	in	Siemens Search vendor "Siemens"	Syngo Sc2000 Search vendor "Siemens" for product "Syngo Sc2000"	-	-	Safe
Siemens Search vendor "Siemens"	Syngo Sc2000 Firmware Search vendor "Siemens" for product "Syngo Sc2000 Firmware"	5.0a Search vendor "Siemens" for product "Syngo Sc2000 Firmware" and version "5.0a"	-	Affected	in	Siemens Search vendor "Siemens"	Syngo Sc2000 Search vendor "Siemens" for product "Syngo Sc2000"	-	-	Safe
Siemens Search vendor "Siemens"	Tissue Preparation System Firmware Search vendor "Siemens" for product "Tissue Preparation System Firmware"	*	-	Affected	in	Siemens Search vendor "Siemens"	Tissue Preparation System Search vendor "Siemens" for product "Tissue Preparation System"	-	-	Safe
Siemens Search vendor "Siemens"	Versant Kpcr Molecular System Firmware Search vendor "Siemens" for product "Versant Kpcr Molecular System Firmware"	*	-	Affected	in	Siemens Search vendor "Siemens"	Versant Kpcr Molecular System Search vendor "Siemens" for product "Versant Kpcr Molecular System"	-	-	Safe
Siemens Search vendor "Siemens"	Versant Kpcr Sample Prep Firmware Search vendor "Siemens" for product "Versant Kpcr Sample Prep Firmware"	*	-	Affected	in	Siemens Search vendor "Siemens"	Versant Kpcr Sample Prep Search vendor "Siemens" for product "Versant Kpcr Sample Prep"	-	-	Safe
Microsoft Search vendor "Microsoft"		Windows 10 1507 Search vendor "Microsoft" for product "Windows 10 1507"				-		-		Affected
Microsoft Search vendor "Microsoft"		Windows 10 1511 Search vendor "Microsoft" for product "Windows 10 1511"				-		-		Affected
Microsoft Search vendor "Microsoft"		Windows 10 1607 Search vendor "Microsoft" for product "Windows 10 1607"				-		-		Affected
Microsoft Search vendor "Microsoft"		Windows 7 Search vendor "Microsoft" for product "Windows 7"				-		sp1		Affected
Microsoft Search vendor "Microsoft"		Windows 8.1 Search vendor "Microsoft" for product "Windows 8.1"				-		-		Affected
Microsoft Search vendor "Microsoft"		Windows Rt 8.1 Search vendor "Microsoft" for product "Windows Rt 8.1"				-		-		Affected
Microsoft Search vendor "Microsoft"		Windows Server 2008 Search vendor "Microsoft" for product "Windows Server 2008"				-		sp2		Affected
Microsoft Search vendor "Microsoft"		Windows Server 2008 Search vendor "Microsoft" for product "Windows Server 2008"				r2 Search vendor "Microsoft" for product "Windows Server 2008" and version "r2"		sp1		Affected
Microsoft Search vendor "Microsoft"		Windows Server 2012 Search vendor "Microsoft" for product "Windows Server 2012"				-		-		Affected
Microsoft Search vendor "Microsoft"		Windows Server 2012 Search vendor "Microsoft" for product "Windows Server 2012"				r2 Search vendor "Microsoft" for product "Windows Server 2012" and version "r2"		-		Affected
Microsoft Search vendor "Microsoft"		Windows Server 2016 Search vendor "Microsoft" for product "Windows Server 2016"				-		-		Affected
Microsoft Search vendor "Microsoft"		Windows Vista Search vendor "Microsoft" for product "Windows Vista"				-		sp2		Affected