Wormable Microsoft RDP flaw appears closer to exploit

  The race appears to be on to develop a working exploit for a serious Windows vulnerability patched earlier this week by Microsoft.

  The bug in Remote Desktop Protocol (RDP), which allows for the remote connection to other computers, enables an uncredentialed attacker to access and install malicious code on a machine running the tool, if it does not have network-level authentication enabled.

  "That's obviously much more serious than a vulnerability which relies upon a user to click on an attachment, or be tricked into running a piece of code," Graham Cluley, senior technology consultant at security firm Sophos, wrote in a blog post on Wednesday.

  Microsoft has said it expects a successful exploit to be developed within a month because of "the attractiveness" of the vulnerability to criminals.

  Security experts are particularly concerned about the flaw because it affects all Windows versions and could give rise to a worm. Last year, the Morto worm spread, and provided an example of what can happen when there is a weakness in RDP.

  So far, however, Microsoft has not seen any public exploit code or active attacks, Yunsun Wee, director of Trustworthy Computing at the software giant, told SCMagazine.com in an email on Thursday. Users are encouraged to apply the patch.

  But, according to Russian security firm Positive Technologies, working code already has appeared on a Chinese forum, though the link provided no longer is functional. And according to a report by security blogger Brian Krebs, at least one hacker site is offering a bounty for a successful exploit.

  A Microsoft spokesperson could not immediately be reached for comment.

(责任编辑:)

分享到:

更多
发表评论
请自觉遵守互联网相关的政策法规,严禁发布色情、暴力、反动的言论。
评价:
表情:
  • 微笑/wx
  • 撇嘴/pz
  • 抓狂/zk
  • 流汗/lh
  • 大兵/db
  • 奋斗/fd
  • 疑问/yw
  • 晕/y
  • 偷笑/wx
  • 可爱/ka
  • 傲慢/am
  • 惊恐/jk
用户名: 验证码:点击我更换图片
资料下载专区
图文资讯

英国官员:让华为参与英国5G建设风险可控

西媒:以色列打造网络安全“硅谷”

俄罗斯力推脱离互联网计划 确保应急状态下

GSMA呼吁欧洲守住网络安全和网络基建供应竞

涉嫌窃取近千政界人士信息 德国20岁黑客遭

返回首页 返回顶部