NetBIOS Remote Code Execution Vulnerability - CVE-2017-0161ID: oval:org.secpod.oval:def:41995 | Date: (C)2017-09-13 (M)2024-03-06 |
Class: VULNERABILITY | Family: windows |
A race condition that could lead to a remote code execution vulnerability exists in NetBT Session Services when NetBT fails to maintain certain sequencing requirements. To exploit the vulnerability, an attacker needs to be able to send specially crafted NetBT Session Service packets to an impacted system. An attacker who successfully exploits the vulnerability could execute arbitrary code on the target. The security update addresses the vulnerability by correcting how NetBT sequences certain operations.
Platform: |
Microsoft Windows 10 |
Microsoft Windows 7 |
Microsoft Windows 8.1 |
Microsoft Windows Server 2008 R2 |
Microsoft Windows Server 2012 |
Microsoft Windows Server 2012 R2 |
Microsoft Windows Server 2016 |