Test ID:	1.3.6.1.4.1.25623.1.0.814894
Category:	Windows : Microsoft Bulletins
Title:	Microsoft Windows Remote Desktop Service Remote Code Execution Vulnerability (KB4500331)
Summary:	This host is missing a critical security; update according to Microsoft KB4500331.
Description:	Summary: This host is missing a critical security update according to Microsoft KB4500331. Vulnerability Insight: The flaw exists when an unauthenticated attacker connects to the system using RDP and sends specially crafted requests. The vulnerability is known as 'BlueKeep'. Vulnerability Impact: Successful exploitation will allow an attacker to execute arbitrary code on the target system. Affected Software/OS: - Microsoft Windows XP SP3 - Microsoft Windows Server 2003 SP2 - Microsoft Windows XP Professional x64 Edition SP2 Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2019-0708 http://packetstormsecurity.com/files/153133/Microsoft-Windows-Remote-Desktop-BlueKeep-Denial-Of-Service.html http://packetstormsecurity.com/files/153627/Microsoft-Windows-RDP-BlueKeep-Denial-Of-Service.html http://packetstormsecurity.com/files/154579/BlueKeep-RDP-Remote-Windows-Kernel-Use-After-Free.html http://packetstormsecurity.com/files/155389/Microsoft-Windows-7-x86-BlueKeep-RDP-Use-After-Free.html http://packetstormsecurity.com/files/162960/Microsoft-RDP-Remote-Code-Execution.html https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0708
Copyright	Copyright (C) 2019 Greenbone Networks GmbH

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.