CVE-2017-8673 — Corporation Windows RDP vulnerability

5 documents4 sources

Severity

5.9MEDIUMNVD

EPSS

22.6%

top 4.13%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Corporation Windows RDP Microsoft Windows 10 Msrc Windows 10 Version 1703 FOR 32-bit Systems +1 more

Timeline

PublishedAug 8

Latest updateMay 13

Description

The Remote Desktop Protocol (RDP) implementation in Microsoft Windows 10 1703 allows an attacker to connect to a target system using RDP and send specially crafted requests, aka "Windows Remote Desktop Protocol (RDP) Denial of Service Vulnerability."

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 2.2 | Impact: 3.6

Affected Packages4 packages

▶msrcmsrc/windows_10_version_1703_for_32-bit_systems

▶msrcmsrc/windows_10_version_1703_for_x64-based_systems

▶NVDmicrosoft/windows_101703

▶CVEListV5microsoft_corporation/windows_rdpMicrosoft Windows 10 1703

Patches

Patch: portal.msrc.microsoft.com ↗Patch: portal.msrc.microsoft.com ↗

🔴Vulnerability Details

GHSA

GHSA-5jcr-xqgq-7779: The Remote Desktop Protocol (RDP) implementation in Microsoft Windows 10 1703 allows an attacker to connect to a target system using RDP and send spec↗2022-05-13

▶

📋Vendor Advisories

Microsoft

Windows Remote Desktop Protocol (RDP) Denial of Service Vulnerability↗2017-08-08

▶

🕵️Threat Intelligence

Talos

Microsoft Patch Tuesday - August 2017↗2017-08-08

▶

Talos

Microsoft Patch Tuesday - August 2017↗2017-08-08

▶