logo

CVE-2019-0708 - Microsoft Remote Desktop Services Remote Code Execution Vulnerability

Project:Microsoft

Product:Remote Desktop Services

Date Added:2021-11-03Due Date:2022-05-03

Vulnerability Name

Microsoft Remote Desktop Services Remote Code Execution Vulnerability

Description

Microsoft Remote Desktop Services, formerly known as Terminal Service, contains an unspecified vulnerability that allows an unauthenticated attacker to connect to the target system using RDP and send specially crafted requests. Successful exploitation allows for remote code execution. The vulnerability is also known under the moniker of BlueKeep.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply updates per vendor instructions.

Additional Notes

https://nvd.nist.gov/vuln/detail/CVE-2019-0708

Related News Articles

10 Critical Network Pentest Findings IT Teams OverlookMarch 21, 2025