Going to nickname it BlueKeep as it’s about as secure as the Red Keep in Game of Thrones, and often leads to a blue screen of death when exploited.
Joke PoCs are already appearing on Github. Don’t run random PoCs you find online; they will often be malicious.
Code and knowledge to reach the trigger of the issue (but not exploitation) is out there now. So InfoSec vendors probably want to move to public detection.
Keep calm and patch on - maybe a bit faster.
There are significantly higher number of internet accessible devices vulnerable than vulnerable to MS17-010 during WannaCry. I have scan results from back then using @zerosum0x0’s scanner (they also wrote the BlueKeep scanner).
- Published very clear guidance and warnings about patching this, with stark warnings. Plus mitigations.
- Built patching into the OS and enabled it by default, and given enterprise class automated free tools in WSUS, Azure etc.