BlueKeep second warning from Micrsoft after PoC

Microsoft warns again (for the second time) its customers for vulnerability ή CVE-2019-0708. Να υπενθυμίσουμε ότι το συγκεκριμένο κενό ασφαλείας υπάρχει σε παλαιότερες εκδόσεις των and to the Remote Desktop Protocol (RDP) service.

The company published the second warning because the last two days appeared online, exploits with two different PoCs (for example)


"Microsoft is convinced that there is one for this issue and although recent reports are accurate, almost one million online computers are still vulnerable to CVE-2019-0708"Said Simon Pope, Director of Incident Response, at the Microsoft Security Response Center (MSRC).

Scans for computers that are vulnerable to BlueKeep continue for a week and reportedly exhibit an ever-increasing rate of vulnerable systems. So Microsoft after the appearance of the public PoC warns again before the start of the .

Οι ενημερώσεις που επιδιορθώνουν το θέμα είναι διαθέσιμες για όλα τα παλειότερα λειτουργικά την Microsoft (Windows XP, Windows Vista, Windows 7, Windows Server και Windows Server 2008) όλες τις εκδόσεις των Windows δηλαδή που είναι ευάλωτες στις επιθέσεις BlueKeep.

The company had warned for the first time in 14 May when it released the updates that fixed the issue. Then the company had said that the flaw was dangerous because it not only allowed remote execution but also because it was a worm (it has the ability to replicate).

“Our recommendation remains the same. We recommend that you update all affected systems as soon as possible, ”says Simon Pope.

Here is to say that the PoC we give above through GitHub is not as dangerous as it can hit a remote vulnerable system, but it can not run code on it.

However experienced reverse engineers were able to achieve remote code execution but did not publish a PoC for fear of a mass s.

The security that managed to create an operational exploit is from the companies Zerodium, McAfee, Kaspersky, Check Pointst, MalwareTechAnd Valthek. The Best Technology Site in Greecefgns

Subscribe to Blog by Email

Subscribe to this blog and receive notifications of new posts by email.

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).