CVE-2019-0887

Sažetak

A remote code execution vulnerability exists in Remote Desktop Services - formerly known as Terminal Services - when an authenticated attacker abuses clipboard redirection, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.

Reference

http://www.securityfocus.com/bid/108964
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0887
https://research.checkpoint.com/reverse-rdp-attack-code-execution-on-rdp-clients/
https://research.checkpoint.com/reverse-rdp-the-hyper-v-connection/
http://www.securityfocus.com/bid/108964
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0887
https://research.checkpoint.com/reverse-rdp-attack-code-execution-on-rdp-clients/
https://research.checkpoint.com/reverse-rdp-the-hyper-v-connection/

CVSS

Base:	8.5
Impact:	10.0
Exploitability:	6.8

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:M/Au:S/C:C/I:C/A:C

Zadnje važnije ažuriranje

07-07-2025 - 18:15

Objavljeno

15-07-2019 - 19:15