Bird_banner_small4
Microsoft Windows SMB Tree Connect Response Denial of Service
TSL ID TSL20170207-01
CVE ID(s) CVE-2017-0016
Severity High
Description

A denial of service vulnerability has been reported in Microsoft Windows. The vulnerability is due to improper handling of server response that contains many bytes following the structure defined in the SMB2 TREE_CONNECT Response structure.

An unauthenticated attacker could exploit this vulnerability by sending maliciously crafted server response. Successful exploitation would lead to denial of service conditions on a vulnerable system.

The vendor has not released an advisory regarding the vulnerability at the time of writing.

Affected Products
  • Microsoft Windows 10
  • Microsoft Windows 8.1
  • Microsoft Windows RT 8.1
  • Microsoft Windows Server 2012
  • Microsoft Windows Server 2012 R2
  • Microsoft Windows Server 2016
CVSS Score Base 7.1 (AV:N/AC:M/Au:N/C:N/I:N/A:C):
  • Access vector is NETWORK
  • Access complexity is MEDIUM
  • Level of authentication required is NONE
  • Impact of this vulnerability on data confidentiality is NONE
  • Impact of this vulnerability on data integrity is NONE
  • Impact of this vulnerability on data availability is COMPLETE
Temporal 6.7 (E:F/RL:U/RC:C):
  • The exploitability level of this vulnerability is FUNCTIONAL
  • The remediation level of this vulnerability is UNAVAILABLE
  • The report confidence level of this vulnerability is CONFIRMED
Identifiers
Microsoft Security Bulletin
US-CERT
References https://github.com/lgandx/PoC/tree/master/SMBv3%20Tree%20Connect
Related Threats