Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
APP:REMOTE:WINDOWS-RDS-DVC-OF |
|---|---|
Severity |
Major |
Recommended |
Yes |
Category |
APP |
Keywords |
Microsoft Windows Remote Desktop Services DVC Decompression Heap Buffer Overflow |
Release Date |
2019/09/16 |
Update Number |
3208 |
Supported Platforms |
srx-17.3+, srx-branch-17.4+, vsrx-15.1+, vsrx3bsd-18.2+ |
APP: Microsoft Windows Remote Desktop Services DVC Decompression Heap Buffer Overflow
This signature detects attempts to exploit a known vulnerability in the Remote Desktop Services component of Microsoft Windows. Successful exploitation could result in the execution of arbitrary code with administrative privileges.
Extended Description
A remote code execution vulnerability exists in Remote Desktop Services – formerly known as Terminal Services – when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Remote Desktop Services Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1182, CVE-2019-1222, CVE-2019-1226.
Affected Products
- Microsoft windows_10 -
- Microsoft windows_10 1607
- Microsoft windows_10 1703
- Microsoft windows_10 1709
- Microsoft windows_10 1803
- Microsoft windows_10 1809
- Microsoft windows_10 1903
- Microsoft windows_7 -
- Microsoft windows_8.1 -
- Microsoft windows_rt_8.1 -
- Microsoft windows_server_2008 -
- Microsoft windows_server_2012 -
- Microsoft windows_server_2012 r2
- Microsoft windows_server_2016 -
- Microsoft windows_server_2016 1803
- Microsoft windows_server_2016 1903
- Microsoft windows_server_2019 -
References