|
|
|||
| Rule General Information |
|---|
| Release Date: | 2020-08-24 | |
| Rule Name: | Microsoft Windows Remote Desktop Services DVC Decompression Heap Buffer Overflow Vulnerability (CVE-2019-1181) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | A remote code execution vulnerability exists in Remote Desktop Services – formerly known as Terminal Services – when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Remote Desktop Services Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1182, CVE-2019-1222, CVE-2019-1226. | |
| Impact: | A buffer overflow vulnerability can be triggered by an attacker in the context of the vulnerable product. Further attacks includes arbitrary code execution and denial of service. | |
| Affected OS: | Windows, Others | |
| Reference: | https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1181 http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190819-01-windows-en https://cert-portal.siemens.com/productcert/pdf/ssa-187667.pdf |
|
| Solutions |
|---|
| The vendors have released upgrade patches to fix vulnerabilities, please visit: https://portal.msrc.microsoft.com/zh-CN/security-guidance/advisory/CVE-2019-1181 |