Microsoft has announced a critical vulnerability on its CVE-2019-0708 bulletin. The description “This vulnerability is pre-authentication and requires no user interaction” clearly indicates the urgency to patch and correct.
The vulnerability is exploited by a specifically crafted request to the target Remote Desktop Protocol.
Windows 10 and Windows 8 are not affected by this. Vulnerable systems include Windows 7, Windows XP, Windows 2003, Windows Server 2008 R2, and Windows Server 2008.
Image Credit: Khara Woods / unsplash
- Windows Server 2022 now generally available. Delivers innovation in security, hybrid, and containers. - September 16, 2021
- Google Simplifies Hardware Security Key 2FA Options. - August 9, 2021
- Microsoft Announces Windows 365 Cloud PC - July 14, 2021