|
|
|||
| Rule General Information |
|---|
| Release Date: | 2024-08-13 | |
| Rule Name: | Windows Server RDLS Remote Code Execution Vulnerability (CVE-2024-38077) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Remote Desktop License Service (RDLS) is an important component of Microsoft Windows Server, it is responsible for the management and issuance of remote desktop service client access license. Windows Server's remote desktop license service has a remote code execution vulnerability that allows an attacker to create specific packets that cause the remote desktop license service to resolve errors, resulting in buffer overflow, the attacker can exploit this vulnerability to further implement remote command execution. | |
| Impact: | An attacker can execute arbitrary code via a successful exploit in the context of the vulnerable software. | |
| Affected OS: | Windows, Linux, Others | |
| Reference: | https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38077 https://cxsecurity.com/cveshow/CVE-2024-38077/ |
|
| Solutions |
|---|
| Refer to the announcement or patch by the vendor: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38077 |