Microsoft released a patch for vulnerability CVE-2020-0796 on March 12, 2020. CVE-2020-0796 is a remote code execution vulnerability in Windows Server Message Block 3.1.1 (SMBv3). An attacker who successfully exploited the vulnerability could gain the ability to execute code on the target server or client. Alibaba Cloud has synchronized this update to the Windows system update source. We recommend that you update the operating system of your ECS instance with the latest patches at your earliest convenience.
- Vulnerability number: CVE-2020-0796
- Vulnerability severity: critical
- Patch update time: March 12, 2020
- Vulnerability location: SMBv3 on Windows 10 and Windows Server
- Affected versions:
- Windows 10, Versions 1903 and 1909
- Windows Server Version 1903
- Windows Server Version 1909
Note As of April 1, 2020, Alibaba Cloud has updated the security patch for the Windows Server Version 1909 public image against vulnerability CVE-2020-0796. You do not need to update the patch again when you create an ECS instance running this public image or replace the system disk of the instance in the ECS console.
A remote code execution vulnerability exists in the way that the Microsoft SMBv3 protocol handles certain requests. An attacker who successfully exploited the vulnerability could gain the ability to execute code on the target server or client.
- To exploit the vulnerability against a server, an unauthenticated attacker could send a specially crafted packet to a targeted SMBv3 server.
- To exploit the vulnerability against a client, an unauthenticated attacker needs to configure a malicious SMBv3 server and convince a user to connect to it.
Install the patch at your earliest convenience.
You can install the patch for vulnerability CVE-2020-0796 by using one of the following methods:
- Method 1: Use the Windows Update program to install the new security updates or cumulative updates released in March 2020.
- Method 2: Visit the official Microsoft website to download the patch.
- Download and install the service stack update KB4541338.
- Download and install the cumulative update KB4551762.
- Restart the operating system of the ECS instance.
Alibaba Cloud Computing Ltd.
If you have any requests or feedback, submit a ticket to contact Alibaba Cloud.