CVE-2017-8464
HIGH KEVMicrosoft Windows 10 1511 - Remote Code Execution
Title source: ruleDescription
Windows Shell in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows local users or remote attackers to execute arbitrary code via a crafted .LNK file, which is not properly handled during icon display in Windows Explorer or any other application that parses the icon of the shortcut. aka "LNK Remote Code Execution Vulnerability."
Exploits (14)
github
SUSPICIOUS
3,480 stars
by qazbnm456 · poc
https://github.com/qazbnm456/awesome-cve-poc/tree/master/CVE-2017-8464.md
github
SUSPICIOUS
14 stars
by xbl3 · poc
https://github.com/xbl3/awesome-cve-poc_qazbnm456/tree/master/CVE-2017-8464.md
nomisec
WORKING POC
8 stars
by doudouhala · client-side
https://github.com/doudouhala/CVE-2017-8464-exp-generator
nomisec
WORKING POC
2 stars
by TrG-1999 · poc
https://github.com/TrG-1999/DetectPacket-CVE-2017-8464
nomisec
SCANNER
by TieuLong21Prosper · poc
https://github.com/TieuLong21Prosper/Detect-CVE-2017-8464
nomisec
WORKING POC
by tuankiethkt020 · poc
https://github.com/tuankiethkt020/Phat-hien-CVE-2017-8464
metasploit
WORKING POC
GREAT
by Uncredited, Yorick Koster, Spencer McIntyre · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/local/cve_2017_8464_lnk_lpe.rb
References (6)
Scores
CVSS v3
8.8
EPSS
0.9388
EPSS Percentile
99.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Details
CISA KEV
2022-02-10
VulnCheck KEV
2017-06-13
InTheWild.io
2017-06-13
ENISA EUVD
EUVD-2017-17414
Status
published
Products (12)
microsoft/windows_10_1511
microsoft/windows_10_1607
microsoft/windows_10_1703
microsoft/windows_7
microsoft/windows_8.1
microsoft/windows_rt_8.1
microsoft/windows_server_2008
microsoft/windows_server_2008
r2 sp1 (2 CPE variants)
microsoft/windows_server_2012
microsoft/windows_server_2012
r2
... and 2 more
Published
Jun 15, 2017
KEV Added
Feb 10, 2022
Tracked Since
Feb 18, 2026