Remove From My Forums

Wanna Cry

Question
1

Sign in to vote

is windows CE 6 vulnerable?

Tuesday, May 16, 2017 2:07 PM

Answers

1

Sign in to vote
Hi bbreda,

I have no reports of CE devices being hit by WannaCry or its variants. My understanding is that this malware targets X86 so ARM, SH & Mips platforms would likely not be impacted. Note that even in the x86 case, the existing attacks are targeted to desktop platform but the CE loader does require any program be compiled for the CE platform so desktop exes will not load. In order for any exe to be loaded it would need to be compiled for CE.

My further understanding is that the attack targets SMB protocol so if your device does not utilize this protocol it would not be vulnerable. Please see https://blogs.technet.microsoft.com/msrc/2017/05/12/customer-guidance-for-wannacrypt-attacks/ "This attack type may evolve over time, so any additional defense-in-depth strategies will provide additional protections. (For example, to further protect against SMBv1 attacks, customers should consider blocking legacy protocols on their networks)"

If your device must receive incoming SMB then you should work through your OEM. I would now direct you to contact your device manufacturer to ask for any updates as they will need to be targeted for their specific platform.

Sincerely,

IoTGirl
- Edited by IoTGirlMicrosoft employee Thursday, May 18, 2017 5:32 AM
- Proposed as answer by Bruce Eitman Friday, May 19, 2017 12:14 PM
- Marked as answer by Bruce Eitman Thursday, October 12, 2017 2:28 PM
Tuesday, May 16, 2017 6:03 PM

All replies

0

Sign in to vote
Can anyone confirm and/or point to a statement from Microsoft that Windows CE is not impacted by Wanna Cry?
- Merged by IoTGirlMicrosoft employee Thursday, May 18, 2017 5:35 AM Same topic
Monday, May 15, 2017 9:11 PM
1

Sign in to vote
Hi bbreda,

I have no reports of CE devices being hit by WannaCry or its variants. My understanding is that this malware targets X86 so ARM, SH & Mips platforms would likely not be impacted. Note that even in the x86 case, the existing attacks are targeted to desktop platform but the CE loader does require any program be compiled for the CE platform so desktop exes will not load. In order for any exe to be loaded it would need to be compiled for CE.

My further understanding is that the attack targets SMB protocol so if your device does not utilize this protocol it would not be vulnerable. Please see https://blogs.technet.microsoft.com/msrc/2017/05/12/customer-guidance-for-wannacrypt-attacks/ "This attack type may evolve over time, so any additional defense-in-depth strategies will provide additional protections. (For example, to further protect against SMBv1 attacks, customers should consider blocking legacy protocols on their networks)"

If your device must receive incoming SMB then you should work through your OEM. I would now direct you to contact your device manufacturer to ask for any updates as they will need to be targeted for their specific platform.

Sincerely,

IoTGirl
- Edited by IoTGirlMicrosoft employee Thursday, May 18, 2017 5:32 AM
- Proposed as answer by Bruce Eitman Friday, May 19, 2017 12:14 PM
- Marked as answer by Bruce Eitman Thursday, October 12, 2017 2:28 PM
Tuesday, May 16, 2017 6:03 PM
0

Sign in to vote

KernelCoder2,

Take a look at this thread: winCE WannaCry

Wednesday, May 17, 2017 4:09 PM
0

Sign in to vote

Thanks,

I apreciate that.

Thursday, May 18, 2017 12:24 AM
0

Sign in to vote

See also this blog post: https://www.toradex.com/blog/wannacry-cyber-attack-impact-on-wince

Friday, July 7, 2017 5:25 PM

Answered by:

Wanna Cry

Question

Answers

All replies