Numen Cyber discovers critical vulnerability
A critical vulnerability has been discovered by cyber security firm Numen Cyber. The vulnerability can potentially allow an attacker to take remote control of a victim’s computer. Numen Cyber has said that this flaw has existed in the Windows Remote Desktop Protocol (RDP) for years.
Exploitation requires no novel techniques
According to Numen Cyber, exploiting the vulnerability does not require any novel techniques. So, attackers with basic skills can potentially launch an attack. The vulnerability has gained a score of 9.8 on the Common Vulnerability Scoring System (CVSS). This is the highest score for a vulnerability and indicates that the flaw is critical.
What is causing the vulnerability?
This critical vulnerability exists in the pre-authentication phase of the Windows RDP, a feature that allows a user to remotely connect to a system. Numen Cyber said that this vulnerability can cause catastrophic damage. It can be exploited to install ransomware, exfiltrate confidential information, and even take over the entire system of a victim.
Cyber security firm Numen Cyber discovered a critical vulnerability in the Windows Remote Desktop Protocol (RDP), potentially giving attackers remote control access to a victim’s computer. Exploiting the vulnerability does not require advanced techniques and can cause serious damage, such as the installation of ransomware or the exfiltration of confidential information.Original Article: https://www.infosecurity-magazine.com/news/experts-release-exploit-windows/