Vulnerabilidade de segurança no Remote Desktop Protocol (RDP)

Categoria: Alertas

segunda, 18 julho 2005 10:31

Sistemas Operativos Implicados:	Windows XP/NT/2K/Me/98/95
Aplicações Implicadas:	Indefinido

A Microsoft publicou uma vulnerabilidade de segurança no RDP, esta vulnerabilidade
pode permitir a um atacante enviar um pedido que pode resultar num denial of service.
Microsoft is investigating new public reports of a vulnerability in
Remote Desktop Services. We have not been made aware of attacks that try
to use the reported vulnerability or of customer impact at this time,
but we are aggressively investigating the public reports.

Our initial investigation has revealed that a denial of service
vulnerability exists that could allow an attacker to send a specially
crafted Remote Desktop Protocol (RDP) request to an affected system. Our
investigation has determined that this is limited to a denial of
service, and therefore an attacker could not use this vulnerability to
take complete control of a system. Services that utilize the Remote
Desktop Protocol are not enabled by default, however if a service were
enabled, an attacker could cause this system to restart.
*Note* Remote Desktop is enabled by default on Windows XP Media Center
Edition.

Upon completion of this investigation, Microsoft will take the
appropriate action to help protect our customers. This may include
providing a security update through our monthly release process or
providing an out-of-cycle security update, depending on customer needs.

Microsoft continues to encourage responsible disclosure of
vulnerabilities. We believe the commonly accepted practice of reporting
vulnerabilities directly to a vendor serves everyone"s best interests by
helping to ensure that customers receive comprehensive, high-quality
updates for security vulnerabilities with no exposure to malicious
attackers while a security update is being developed.

http://www.microsoft.com/technet/security/advisory/904797.mspx