Title

Multiple Vulnerabilities in Microsoft Remote Desktop Protocol (RDP) (MS15-082) (Cat II impact)

Discussion

Microsoft has released a security bulletin addressing multiple remote code execution vulnerabilities in Remote Desktop Protocol (RDP). RDP is a Microsoft protocol that allows users to connect to remote computers and interact with the remote computer through a graphical user interface (GUI). To exploit these vulnerabilities, an attacker would initiate a man in the middle attack or place a malicious DLL file in a users working directory and entice the user to open the malicious RDP file. If successfully exploited, the most serious of these vulnerabilities would allow an attacker to take complete control of an affected system.

Check Content

Fix Text

Additional Identifiers

Rule ID:

Vulnerability ID: V-61299

Group Title:

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.