CVSS Score
9.3 / 10.0
Severity
Critical
Exploitation Status
⚠ Active Exploitation
Patch Status
✓ Patch Available
Affected Software
Windows XP, Vista, 7, 8/8.1, Server 2003/2008/2012 R2 (SMBv1)
Exploitation Method
Type Confusion, Remote Code Execution (SMBv1)
MITRE ATT&CK
T1210 - Exploitation of Remote Services
Teknik Detaylar
CVE-2017-0145 (EternalRomance), SMBv1 yazma primitive aracılığıyla kernel bellek bozulmasına yol açar. EternalBlue ile birlikte MS17-010 yaması altında kapatıldı.
- Exploit: EternalRomance (Shadow Brokers)
- Hedef: Özellikle Server 2003/2008
- Yama: MS17-010