Rapid7 Vulnerability & Exploit Database

MS16-114: Security Update for Windows SMBv1 Server (3185879)

Free InsightVM Trial No Credit Card Necessary
2024 Attack Intel Report Latest research by Rapid7 Labs
Back to Search

MS16-114: Security Update for Windows SMBv1 Server (3185879)

Severity
9
CVSS
(AV:N/AC:L/Au:S/C:C/I:C/A:C)
Published
09/13/2016
Created
07/25/2018
Added
09/13/2016
Modified
11/18/2021

Description

For Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2 operating systems a remote code execution vulnerability exists in the way that the Microsoft Server Message Block 1.0 (SMBv1) Server handles certain requests when an authenticated attacker sends specially crafted packets to the SMBv1 server. The vulnerability does not impact other SMB Server versions.

Solution(s)

  • WINDOWS-HOTFIX-MS16-104-28f23bdb-daf7-47ea-80dd-6e203f0b2a74
  • WINDOWS-HOTFIX-MS16-104-ebfeea9b-f063-411e-8e11-021d589ba04b
  • WINDOWS-HOTFIX-MS16-114-04c3010d-9989-495c-ab1c-dbc011015822
  • WINDOWS-HOTFIX-MS16-114-04e46ea9-05cf-424e-8b67-5649d3c6df35
  • WINDOWS-HOTFIX-MS16-114-05b0442f-56e8-4c89-8051-fac75c73223d
  • WINDOWS-HOTFIX-MS16-114-0c4107fe-632e-485b-8bbf-0370f5fc4f92
  • WINDOWS-HOTFIX-MS16-114-18e5b8f1-480b-4fb2-8b72-f479b8c1d81e
  • WINDOWS-HOTFIX-MS16-114-27360dad-3c2a-40d5-94a0-b9ea5d6b3c27
  • WINDOWS-HOTFIX-MS16-114-38becd09-9cfe-43e5-8958-978f3f990597
  • WINDOWS-HOTFIX-MS16-114-58f00605-d768-4409-8a87-4d630107631c
  • WINDOWS-HOTFIX-MS16-114-677f3152-2474-467a-a2f8-aa3af0849677
  • WINDOWS-HOTFIX-MS16-114-788dc51d-f6ef-4014-9e51-e5e513cb90ef
  • WINDOWS-HOTFIX-MS16-114-88aaa062-4a7b-4690-ac06-8527d3db830d
  • WINDOWS-HOTFIX-MS16-114-9e883c4b-e9a8-4946-8127-6fecfee561f5
  • WINDOWS-HOTFIX-MS16-114-ba289db5-0288-46af-9062-746b8dc3652c
  • WINDOWS-HOTFIX-MS16-114-bbf3e0d9-20eb-4a89-a91c-db1d644af175
  • WINDOWS-HOTFIX-MS16-114-c19fe2f6-5b9d-4c73-92ed-5ca9a1bc4955
  • WINDOWS-HOTFIX-MS16-114-c8763216-f956-4f44-926d-a91e561d92e0
  • WINDOWS-HOTFIX-MS16-114-e3991f17-df67-4311-9a2c-228ce69063bb
  • WINDOWS-HOTFIX-MS16-114-f402e517-884a-4533-bfde-e8cc103e38b9

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;