Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name	APP:REMOTE:CVE-2019-0787-RCE
Severity	Major
Recommended	Yes
Recommended Action	Drop
Category	APP
Keywords	Microsoft Windows Remote Desktop Services CVE-2019-0787 Remote Code Execution
Release Date	2019/09/10
Update Number	3206
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

APP: Microsoft Windows Remote Desktop Services CVE-2019-0787 Remote Code Execution

This signature detects attempts to exploit a known vulnerability against Microsoft Windows Remote Desktop Services. A successful attack can lead to arbitrary code execution.

Extended Description

A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote Desktop Client Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0788, CVE-2019-1290, CVE-2019-1291.

Affected Products

Microsoft windows_10 -
Microsoft windows_10 1607
Microsoft windows_10 1703
Microsoft windows_10 1709
Microsoft windows_10 1803
Microsoft windows_10 1809
Microsoft windows_10 1903
Microsoft windows_7 -
Microsoft windows_8.1 -
Microsoft windows_rt_8.1 -

References

CVE: CVE-2019-0787

Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

APP: Microsoft Windows Remote Desktop Services CVE-2019-0787 Remote Code Execution

Extended Description

Affected Products

References