CVE-2019-0708 - Microsoft Remote Desktop Services Remote Code Execution Vulnerability

Vulnerability Name

Microsoft Remote Desktop Services Remote Code Execution Vulnerability

Description

Microsoft Remote Desktop Services, formerly known as Terminal Service, contains an unspecified vulnerability that allows an unauthenticated attacker to connect to the target system using RDP and send specially crafted requests. Successful exploitation allows for remote code execution. The vulnerability is also known under the moniker of BlueKeep.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply updates per vendor instructions.

Additional Notes

https://nvd.nist.gov/vuln/detail/CVE-2019-0708

Related News Articles

Kimsuky Exploits BlueKeep RDP Vulnerability to Breach Systems in South Korea and JapanApril 22, 2025

10 Critical Network Pentest Findings IT Teams OverlookMarch 21, 2025