View Full Version : Patch your server , RDP security holes

14-03-2012, 11:16 AM
"What might an attacker use the vulnerability to do?
An attacker who successfully exploited this vulnerability could take complete control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights."



Patches seem to be coming through on Windows Update.

Speedy Gonzales
14-03-2012, 11:29 AM
Theyre called the monthly security updates. Which do come out today

14-03-2012, 11:47 AM
I had someone call me a month or so ago because their internet usage had gone through the roof and it was all uploads too.
Traced the problem to a bot that was making their server try and RDP into some other machine in China.
Turns out their last IT company had put the server in the DMZ on the router so it was fully exposed to the internet.
There was also a security patch for RDP to stop this particular vulnerability.