Vulnerabilities in all recent Remote Desktop Connection could allow remote code execution
Friday, 14 August 2009 by Michel Roth
The vulnerabilities could allow remote code execution if an attacker successfully convinced a user of Terminal Services to connect to a malicious RDP server or if a user visits a specially crafted Web site that exploits this vulnerability.

A remote code execution vulnerability exists in the way that Microsoft Remote Desktop Connection (formerly known as Terminal Services Client) processes specific parameters returned by the RDP server. An attacker who successfully exploited this vulnerability could take complete control of an affected system remotely. An attacker could then install programs or view, change, or delete data; or create new accounts with full user rights.

A remote code execution vulnerability exists in the Microsoft Terminal Services Client ActiveX control. An attacker could exploit the vulnerability by constructing a specially crafted Web page that could potentially allow remote code execution if a user visited that page. An attacker who successfully exploited this vulnerability could take complete control of an affected system.

Source: http://www.microsoft.com/technet/security/bulletin/ms09-044.mspx


Related Items:

Security Updates Summary For May 2006 (9 May 2006)
Microsoft Updates For June: Twelve Security Bulletins - Fixes 21 Security Holes (14 June 2006)
Microsoft Security Updates For July 2005 (13 July 2005)
Microsoft Security Updates For February (15 February 2006)
November's Hotfix: Microsoft Security Bulletin MS05-053 (10 November 2005)
Microsoft Security Patches For June 2005 (15 June 2005)
Microsoft Security Bulletin For March 2006 (15 March 2006)
Microsoft Security Bulletin For February (9 February 2005)
Microsoft Security Updates For January 2006 (11 January 2006)
Vulnerability In Internet Explorer Could Allow Remote Code Execution (913333) (8 February 2006)
Comments (0)
Show/Hide comment form