Patch new wormable vulnerabilities in Remote Desktop Services (CVE-2019-1181/1182)
MSRC
2019-08-13 15:00:00
收藏
Today Microsoft released a set of fixes for Remote Desktop Services that include two critical Remote Code Execution (RCE) vulnerabilities, CVE-2019-1181 and CVE-2019-1182. Like the previously-fixed ‘BlueKeep’ vulnerability (CVE-2019-0708), these two vulnerabilities are also ‘wormable’, meaning that any future malware that exploits these could propagate from vulnerable computer to vulnerable computer without user interaction.
目录
最新
- Why XSS still matters: MSRC’s perspective on a 25-year-old threat
- BlueHat Asia 2025: Closing soon: Submit your papers by September 14, 2025
- postMessaged and Compromised
- Zero Day Quest: Join the largest hacking event with up to $5 million in total bounty awards
- .NET Bounty Program now offers up to $40,000 in awards
- .NET Bounty Program now offers up to $40,000 in awards
- How Microsoft defends against indirect prompt injection attacks
- Customer guidance for SharePoint vulnerability CVE-2025-53770