• Articles
    • Editorial Articles
    • Research Articles
    • WatchGuard Articles
  • The 443 Podcast
  • Threat Landscape
  • About
    • About Us
    • Contact Us
    • Contribute to Secplicity

Secplicity - Security Simplified

Powered by WatchGuard Technologies

Microsoft Black Tuesday: Windows RDP Flaw Opens Your Desktop to Everyone

March 13, 2012 By Corey Nachreiner

Ready or not, here Microsoft Patch Day comes.

As promised, Microsoft released six security bulletins today, containing updates to fix seven security vulnerabilities in Windows, Visual Studio, and Expression Studio. They only rate one of these bulletins as Critical.

The Remote Desktop Protocol (RDP) bulletin is the stand-out update for this month. As you probably know, RDP allows you to remotely gain access to one of your computers over a network, and to control its desktop as though you were physically on the machine. Windows Terminal Servers also use the RDP protocol to allow many remote users to share one machine. Today’s Critical Windows bulletin fixes two flaws in the Windows RDP component, one of which could allow remote attackers to gain complete control of any Windows computers that allow RDP connections. I highly recommend you test and install this particular update first, especially if you manage Windows Terminal Servers.

Microsoft’s updates also fix three other Windows flaws. Though none are quite as bad as the RDP one, a few of them (like the DNS DoS flaw) pose significant risk themselves. In short, I’d recommend you install all of today’s Windows updates as quickly as you can. The remaining two updates fix flaws in lesser used products. If you have software developers in your organization who use Visual Studio, or graphic designers who use Expression Studio, you’ll want to apply those products’ updates as well. However, I suspect attackers won’t as aggressively exploit flaws in those products.

I’ll post a more detailed alert on the Windows flaws and how to fix them, shortly. Since I don’t suspect the Visual and Expression Studio issues affect as many people, I’ll only post a shorter blog-like summary on them later. In the meantime, if you’d like to get a head start patching, check out Microsoft’s summary bulletin for March, which lists these bulletins in order of severity.  — Corey Nachreiner, CISSP (@SecAdept)

Share This:

Related

Filed Under: Uncategorized Tagged With: Expression Studio, Microsoft, Updates and patches, Visual Studio

Comments

  1. Corey Nachreiner says

    March 13, 2012 at 1:17 pm

    SANS ISC seems to agree with my thoughts on the high severity of the RDP flaw: http://isc.sans.edu/diary.html?storyid=12781&rss

    Definitely patch that one immediately.

    Reply
  2. http://shuotaifeng.com says

    April 16, 2013 at 10:03 am

    Having read this I thought it was very enlightening. I appreciate
    you spending some time and energy to put this informative article together.
    I once again find myself personally spending way
    too much time both reading and commenting. But so what, it was still worthwhile!

    Reply
  3. Emmanuel says

    June 11, 2013 at 6:33 pm

    WOW just what I was looking for. Came here by searching for negotiation skills seminar

    Reply
  4. good advice says

    July 21, 2013 at 3:44 pm

    Ahaa, its fastidious discussion regarding this piece of
    writing at this place at this blog, I have read all that,
    so at this time me also commenting here.

    Reply
  5. moving house made easy says

    June 9, 2014 at 5:49 pm

    Hello it’s me, I am also visiting this web site daily, this website is actually good
    and the people are genuinely sharing good
    thoughts.

    Reply

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

The 443 Podcast

A weekly podcast featuring the leading white-hat hackers and security researchers. Listen Now
the 443 podcast

Threat Landscape

Filter and view Firebox Feed data by type of attack, region, country, and date range. View Now
threat landscape

Top Posts

  • Cybersecurity News: Free Cybersecurity Training, TrickBot Group Exposed, Major GoDaddy Breach, and Russia to Legalize cybercrime?!
  • US National Cybersecurity Strategy
  • 3CX Supply Chain Attack
  • Here Come The Regulations

Email Newsletter

Sign up to get the latest security news and threat analysis delivered straight to your inbox

By signing up you agree to our Privacy Policy.


The views and opinions expressed on this website are those of the authors and do not necessarily reflect the policy or position of WatchGuard Technologies.

Stay in Touch

Recent Posts

  • 3CX Supply Chain Attack
  • The NSA’s Guidance on Securing Authentication
  • Cybersecurity News: LastPass Incident Revealed, White House Issues Cybersecurity Strategy, FBI Purchases Leaked USHOR PII Data, and a Slew of Other Breaches
  • An Update on Section 230
  • Here Come The Regulations
View All

Search

Archives

Copyright © 2023 WatchGuard Technologies · Cookie Policy · Privacy Policy · Terms of Use