CVE-2017-0176

Exploit

EPSS 62.33%
Published 22.06.2017 14:29:00
Last modified 20.04.2025 01:37:25
Source secure@microsoft.com
Teams watchlist Login
Open Login

A buffer overflow in Smart Card authentication code in gpkcsp.dll in Microsoft Windows XP through SP3 and Server 2003 through SP2 allows a remote attacker to execute arbitrary code on the target computer, provided that the computer is joined in a Windows domain and has Remote Desktop Protocol connectivity (or Terminal Services) enabled.

Affected products Warnungen 0 Metrics 3 CWE 1 References 9

Data is provided by the National Vulnerability Database (NVD)

Microsoft ≫ Windows Server 2003

Microsoft ≫ Windows Server 2003 Updatesp2

Microsoft ≫ Windows Xp

Microsoft ≫ Windows Xp Updatesp1

Microsoft ≫ Windows Xp Updatesp2

Microsoft ≫ Windows Xp Updatesp3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	62.33%	0.983

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	8.1	2.2	5.9	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	9.3	8.6	10	AV:N/AC:M/Au:N/C:C/I:C/A:C

CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

http://www.securityfocus.com/bid/98550

Third Party Advisory

VDB Entry

http://www.securityfocus.com/bid/98752

Third Party Advisory

VDB Entry

https://blog.0patch.com/2017/06/a-quick-analysis-of-microsofts.html

https://blog.fortinet.com/2017/05/11/deep-analysis-of-esteemaudit

Third Party Advisory

Exploit

https://blogs.technet.microsoft.com/msrc/2017/04/14/protecting-customers-and-evaluating-risk/

Patch