New Vulnerabilities Found in Windows Remote Desktop Services

By

Microsoft has already fixed these vulnerabilities

Researchers at Microsoft's security team has found four new critical remote code execution vulnerabilities in Windows. The vulnerabilities are in the Remote Desktop Services of Windows and are similar to BlueKeep' RDP vulnerability (CVE-2019-0708).

These are wormable vulnerabilities, which means any future malware that exploits these could propagate from vulnerable computer to vulnerable computer without user interaction.

The vulnerabilities affect all recent versions of Windows, including Windows 7 SP1, Windows Server 2008 R2 SP1, Windows Server 2012, Windows 8.1, Windows Server 2012 R2, and all supported versions of Windows 10, including server versions. There are some versions of Windows unaffected by these vulnerabilities, including Windows XP, Windows Server 2003, and Windows Server 2008. The good news is that the Remote Desktop Protocol (RDP) itself is not affected.

According to the Hacker News, all four vulnerabilities, CVE-2019-1181, CVE-2019-1182, CVE-2019-1222, and CVE-2019-1226, can be exploited by unauthenticated, remote attackers to take control of an affected computer system without requiring any user interaction.

Microsoft found these vulnerabilities when its teams were working on hardening Remote Desktop Services. The company has already released the fix; patch your systems as soon as possible.

08/14/2019

Related content

comments powered by Disqus