000035166 - Microsoft Security Bulletin MS17-010 ("WannaCry", "Petya", "GoldenEye") Vulnerabilities in RSA Products

Document created by RSA Link Team Employee on May 18, 2017Last modified by RSA Product Team on Jun 28, 2017
Version 3Show Document
  • View in full screen mode

Article Content

Article Number000035166
Applies ToRSA Product Set:  All RSA Products
CVE IDCVE-2017-0143, CVE-2017-0144, CVE-2017-0145, CVE-2017-0146, CVE-2017-0147, CVE-2017-0148
Article SummaryOn Friday, 12th May 2017, a ransomware threat known as “WannaCry” or “Wanna Decryptor”, and more recently "Petya" and "GoldenEye", was launched impacting many organizations across the globe. The scale of this attack, together with this specific ransomware family, is unique in that it has worm-like capabilities leveraging an exploit against vulnerable Microsoft Windows® operating systems.
Link to Advisorieshttps://technet.microsoft.com/en-us/library/security/ms17-010.aspx
Resolution

RSA has completed an initial investigation of the Microsoft Security Bulletin MS17-010 which discloses a number of vulnerabilities that are currently being exploited by multiple ransomware attacks such as WannaCry, Petya, and GoldenEye. For RSA products that run on a Microsoft Windows® operating system impacted by MS17-010, RSA recommends that customers follow the Microsoft Recommendations, which are found here, to patch the underlying hosts. See additional guidance on the Petya ransomware attacks from Microsoft here.


RSA recommends that all customers review their products Security Configuration Guide (https://community.rsa.com) in addition to following best practices in securing internal networks and protecting systems from unauthorized physical access.

Notes

For status of Dell EMC products, refer to the following article: https://support.emc.com/kb/499808

For status of Dell products, refer to the following article: http://www.dell.com/support/article/us/en/19/SLN306320/windows-smb-vulnerability-impact-status-on-dell-products-and-software?lang=EN

 

Disclaimer

Read and use the information in this RSA Security Advisory to assist in avoiding any situation that might arise from the problems described herein. If you have any questions regarding this product alert, contact RSA Software Technical Support at 1- 800 995 5095. RSA Security LLC and its affiliates, including without limitation, its ultimate parent company, EMC Corporation, distributes RSA Security Advisories in order to bring to the attention of users of the affected RSA products, important security information. RSA recommends that all users determine the applicability of this information to their individual situations and take appropriate action. The information set forth herein is provided 'as is' without warranty of any kind. RSA disclaims all warranties, either express or implied, including the warranties of merchantability, fitness for a particular purpose, title and non-infringement. In no event, shall RSA, its affiliates or suppliers, be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if RSA, its affiliates or suppliers have been advised of the possibility of such damages. Some jurisdictions do not allow the exclusion or limitation of liability for consequential or incidental damages, so the foregoing limitation may not apply.

Attachments

    Outcomes