CVE-2019-0708
KEVMicrosoft Remote Desktop Services Remote Code Execution Vulnerability
9.8
CriticalPublished:
Last updated:
Source:secure@microsoft.com
Analyzed
Weakness (CWE)
CVSS Vector
v3.1- Attack Vector
- Network
- Attack Complexity
- Low
- Privileges Required
- None
- User Interaction
- None
- Scope
- Unchanged
- Confidentiality
- High
- Integrity
- High
- Availability
- High
Description
A remote code execution vulnerability exists in Remote Desktop Services formerly known as Terminal Services when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.
Exploits
469462019-05-30dosWindows
Microsoft Windows Remote Desktop - 'BlueKeep' Denial of Service
By n1xbyte
471202019-07-15dosWindows
Microsoft Windows Remote Desktop - 'BlueKeep' Denial of Service (Metasploit)
By RAMELLA Sebastien
471562019-07-23papersWindows
BlueKeep - Technical Analysis (Potential Path For Exploitation)
By 0xeb-bp
472452019-08-06papersWindows_x86
Low-level Reversing of BLUEKEEP vulnerability (CVE-2019-0708)
By Ricardo Narvaja
473362019-08-29papersWindows
Exploitation of Windows CVE-2019-0708 (BlueKeep): Three Ways to Write Data into the Kernel with RDP PDU
By Paloalto Networks
474162019-09-24remoteWindows
Microsoft Windows - BlueKeep RDP Remote Windows Kernel Use After Free (Metasploit)
By Metasploit
476832019-11-19remoteWindows_x86
Microsoft Windows 7 (x86) - 'BlueKeep' Remote Desktop Protocol (RDP) Remote Windows Kernel Use After Free
By 0xeb-bp
References
secure@microsoft.com
http://packetstormsecurity.com/files/153133/Microsoft-Windows-Remote-Desktop-BlueKeep-Denial-Of-Service.htmlsecure@microsoft.com
http://packetstormsecurity.com/files/153627/Microsoft-Windows-RDP-BlueKeep-Denial-Of-Service.htmlsecure@microsoft.com
http://packetstormsecurity.com/files/154579/BlueKeep-RDP-Remote-Windows-Kernel-Use-After-Free.htmlsecure@microsoft.com
http://packetstormsecurity.com/files/155389/Microsoft-Windows-7-x86-BlueKeep-RDP-Use-After-Free.htmlsecure@microsoft.com
http://packetstormsecurity.com/files/162960/Microsoft-RDP-Remote-Code-Execution.htmlsecure@microsoft.com
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190529-01-windows-ensecure@microsoft.com
http://www.huawei.com/en/psirt/security-notices/huawei-sn-20190515-01-windows-ensecure@microsoft.com
https://cert-portal.siemens.com/productcert/pdf/ssa-166360.pdfsecure@microsoft.com
https://cert-portal.siemens.com/productcert/pdf/ssa-406175.pdfsecure@microsoft.com
https://cert-portal.siemens.com/productcert/pdf/ssa-433987.pdfsecure@microsoft.com
https://cert-portal.siemens.com/productcert/pdf/ssa-616199.pdfsecure@microsoft.com
https://cert-portal.siemens.com/productcert/pdf/ssa-832947.pdfsecure@microsoft.com
https://cert-portal.siemens.com/productcert/pdf/ssa-932041.pdfsecure@microsoft.com
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0708af854a3a-2127-422b-91ae-364da2661108
http://packetstormsecurity.com/files/153133/Microsoft-Windows-Remote-Desktop-BlueKeep-Denial-Of-Service.htmlaf854a3a-2127-422b-91ae-364da2661108
http://packetstormsecurity.com/files/153627/Microsoft-Windows-RDP-BlueKeep-Denial-Of-Service.htmlaf854a3a-2127-422b-91ae-364da2661108
http://packetstormsecurity.com/files/154579/BlueKeep-RDP-Remote-Windows-Kernel-Use-After-Free.htmlaf854a3a-2127-422b-91ae-364da2661108
http://packetstormsecurity.com/files/155389/Microsoft-Windows-7-x86-BlueKeep-RDP-Use-After-Free.htmlaf854a3a-2127-422b-91ae-364da2661108
http://packetstormsecurity.com/files/162960/Microsoft-RDP-Remote-Code-Execution.htmlaf854a3a-2127-422b-91ae-364da2661108
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190529-01-windows-enaf854a3a-2127-422b-91ae-364da2661108
http://www.huawei.com/en/psirt/security-notices/huawei-sn-20190515-01-windows-enaf854a3a-2127-422b-91ae-364da2661108
https://cert-portal.siemens.com/productcert/pdf/ssa-166360.pdfaf854a3a-2127-422b-91ae-364da2661108
https://cert-portal.siemens.com/productcert/pdf/ssa-406175.pdfaf854a3a-2127-422b-91ae-364da2661108
https://cert-portal.siemens.com/productcert/pdf/ssa-433987.pdfaf854a3a-2127-422b-91ae-364da2661108
https://cert-portal.siemens.com/productcert/pdf/ssa-616199.pdfaf854a3a-2127-422b-91ae-364da2661108
https://cert-portal.siemens.com/productcert/pdf/ssa-832947.pdfaf854a3a-2127-422b-91ae-364da2661108
https://cert-portal.siemens.com/productcert/pdf/ssa-932041.pdfaf854a3a-2127-422b-91ae-364da2661108
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0708134c704f-9b21-4f2e-91b3-4a467353bcc0
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-0708