Archive for April, 2012

Microsoft RDP Vulnerability – Critical Patch Update Port 3389

Tuesday, April 3rd, 2012

Microsoft have recently released a update that is a must for all servers that have remote access via RDP (Remote Desktop – TCP port 3389). The full MS document can be read here – Microsoft Security Bulletin MS12-020 – Critical. Suffice to say it allows attacked to exploit a flaw in one of the most common Windows remote access products – and so should be updated immediately.

Even if you dont normally do windows updates it is critial that you do this one to maintain integrity of your RDP access ports. If exploited, remote attackers can run remote code on your server which can do things like send out spam emails or create web pages with malware on them.