Skip to main content

Posts

Showing posts with the label : Un-patched RDP Clients

Multiple vulnerabilities in RDP can allow attackers to take control of computers

These flaws in the Remote Desktop Protocol (RDP) can result in the so-called ‘reverse RDP attack’. There are a total of 25 security issues in the RDP. Security researchers have discovered multiple vulnerabilities in the Remote Desktop Protocol (RDP) that can result in the so-called ‘reverse RDP attack’. These vulnerabilities can allow bad actors to take control of computers. Discovered by researchers at CheckPoint, there are a total of 25 security issues in the RDP. Of these, 16 issues have been found in the open source FreeRDP RDP client and its fork rdesktop, as well as in Microsoft’s own RDP client implementation. According to researchers, the attackers can use at least of the two scenarios to gain elevated network permissions. This includes: Attacking an IT member that connects to an affected workstation placed inside the corporate network; Attacking a malware researcher that connects to a remote sandboxed virtual machine that contains a tested malware. Once the