November 20, 2023
Severity Medium Analysis Summary Agent Tesla is a very popular spyware Trojan built for the.NET framework. Since its initial appearance in 2014, this has been deployed […]
Rewterz Threat Advisory – ZombieLoad Chip Flaws in Apple, Amazon, Google, Microsoft and Mozilla Products That Use Intel CPUs
May 15, 2019Rewterz Threat Advisory – Siemens SCALANCE W1750D Multiple Command Injection and Cross-Site Scripting Vulnerabilities
May 16, 2019Rewterz Threat Advisory – ZombieLoad Chip Flaws in Apple, Amazon, Google, Microsoft and Mozilla Products That Use Intel CPUs
May 15, 2019Rewterz Threat Advisory – Siemens SCALANCE W1750D Multiple Command Injection and Cross-Site Scripting Vulnerabilities
May 16, 2019
Severity
High
Analysis Summary
Exploiting this vulnerability involves sending a specifically crafted request to a system utilizing RDP (Remote Desktop Protocol). An attacker who successfully exploited this vulnerability could execute arbitrary code on the target system. This can include installing programs; view, change, or delete data; or create new accounts with full user rights. This vulnerability exists prior to any credential passing, potentially allowing this threat to spread in a worm-like fashion.
Impact
- System/ Privileged access
- Execution of arbitrary code
Affected Vendors
Microsoft
Affected Products
- Windows 7
- Windows Server 2008 R2
- Microsoft Windows Server 2008
- Windows XP (Out of support)
- Windows 2003 (Out of support)
Remediation
Vendor has released updates/ patches for the following products.
Windows XP SP3 x86, Windows XP Professional x64 Edition SP2, Windows XP Embedded SP3 x86, Windows Server 2003 SP2 x86, Windows Server 2003 x64 Edition SP2
https://www.catalog.update.microsoft.com/Search.aspx?q=KB4500331