Skip Ribbon Commands
Skip to main content

Microsoft Windows SMB server Eternalblue/Wannacry remote code execution
vulnerability (MS17-010)

Effective Date: 05/15/2017
Deadline to patch: 05/17/2017
Product: Microsoft Server Message Block 1.0 (SMBv1) in many Microsoft
Windows operating systems
Platform: Microsoft Windows XP, Vista, 2003, 2008, 7, 2008 R2, 2012, 8,
8.1, RT 8.1, 2012 R2, 10, and 2016

There is a vulnerability in SMBv1 on many Microsoft operating systems
that allows remote code execution due to improper handling of certain
requests.  This allows an unauthenticated, remote attacker to exploit
these vulnerabilities resulting in code execution.  This has been
recently exploited, resulting in the spread of malware in the form of
ransomware.

It should be noted that patches have been released for unsupported
operating systems such as XP, 2003, and 8.

If you run a Windows operating system and are on the Fermilab network,
you MUST install patch MS17-010.  Unpatched nodes on the Fermi network
may be blocked.
‚Äč