Microsoft Windows Search Remote Code Execution Vulnerability (CVE-2017-8543)
Critical Nessus Plugin ID 102683
SynopsisIt was possible to overflow an allocated buffer by sending crafted windows search protocol packets.
DescriptionBy sending two malformed Windows Search Protocol packets over SMB, Nessus was able to overflow an allocated buffer.
SolutionMicrosoft has released a set of patches for Windows 2008, 2008 R2, 2012, 8.1, RT 8.1, 2012 R2, 10, and 2016.