SecurityHome.eu MS09-044 - Critical: Vulnerabilities in Remote Desktop Connection Could Allow Remote Code Execution (970927)

Home / bulletins

MS09-044 - Critical: Vulnerabilities in Remote Desktop Connection Could Allow Remote Code Execution (970927) - Version:1.2
Posted on 20 August 2009
There is an newer version: MS09-044 - Version: 2.0
Critical
Severity Rating: Critical - Revision Note: V1.2 (August 19, 2009): Corrected the registry key verification entry for RDP Version 5.1 on Windows XP Service Pack 2 (KB958470).Summary: This security update resolves two privately reported vulnerabilities in Microsoft Remote Desktop Connection. The vulnerabilities could allow remote code execution if an attacker successfully convinced a user of Terminal Services to connect to a malicious RDP server or if a user visits a specially crafted Web site that exploits this vulnerability. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
Link
Other versions
MS09-044 - Version: 1.0
MS09-044 - Version: 2.1
MS09-044 - Version: 1.2
MS09-044 - Version: 2.0

TOP

Bulletins :

Last 20

Exploits :

Last 20