Tuesday, March 13, 2012

Vulnerabilities in Remote Desktop Could Allow Remote Code Execution (2671387)

Remote exploit patched today that can allow an attacker (or zombie machine) to create admin accounts, and install software of choice on your servers accessible via remote desktop, without logging in!
Microsoft patch Tuesdays come and go.  Usually I pay no attention and carry on about my busy day. This one scared the $h!t out of me...  Patch em up boys (and gals)...  Especially if you have servers with RDP public facing!





No comments: