Microsoft discovered a remote code execution (RSA from Remote Code Execution) vulnerability in services remote desktop (Remote Desktop Services) in older versions of Windows and an emergency update has been released.
The vulnerability is identified by CVE-2019-0708, and occurs at the pre-certification stage. So according to Microsoft you do not even need user interaction.
Most worrying, however, is that exploid could be released in the form of a worm, which means that it could spread from one device to another, like malware. WannaCry.
Οι επηρεαζόμενες εκδόσεις των Windows είναι τα λειτουργικά Windows XP, Windows Server 2003, Windows 7 and Windows Server 2008. The Windows 8 and Windows 10 are not at risk.
Supported versions of Windows, such as Windows 7, will automatically receive the update from Windows Update, while for non-supported operating systems, such as Windows XP, updates will have to be installed manually by Microsoft Update Catalog.
Microsoft states that so far it does not know if any exploit will be released but it is very likely we will see it in the near future.
So if you use older systems, update your computers immediately!
__________________________________________
- Adobe Fixes 87 Vulnerabilities! Update immediately
- Plead malware attacks on ASUS Webstorage software