Severity

Medium

Analysis Summary

A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 1.0 (SMBv1) server handles certain requests. An attacker who successfully exploited the vulnerability could gain the ability to execute code on the target server. To exploit the vulnerability, in most situations, an authenticated attacker could send a specially crafted packet to a targeted SMBv1 server.

Impact

Code execution on target server

Affected Vendors

Microsoft

Remediation

Refer to vendor’s advisory for the list of affected products and upgraded patches.

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1301