PDA

View Full Version : Patch your server , RDP security holes



1101
14-03-2012, 11:16 AM
"What might an attacker use the vulnerability to do?
An attacker who successfully exploited this vulnerability could take complete control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights."

http://krebsonsecurity.com/2012/03/rdp-flaws-lead-microsofts-march-patch-batch/

http://technet.microsoft.com/en-us/security/bulletin/ms12-020
http://technet.microsoft.com/en-us/security/bulletin/ms12-018

Patches seem to be coming through on Windows Update.

Speedy Gonzales
14-03-2012, 11:29 AM
Theyre called the monthly security updates. Which do come out today

CYaBro
14-03-2012, 11:47 AM
I had someone call me a month or so ago because their internet usage had gone through the roof and it was all uploads too.
Traced the problem to a bot that was making their server try and RDP into some other machine in China.
Turns out their last IT company had put the server in the DMZ on the router so it was fully exposed to the internet.
There was also a security patch for RDP to stop this particular vulnerability.