NEWS FROM THE LAB - Wednesday, March 14, 2012

Microsoft's Guidance on CVE-2012-0002 Posted by Sean @ 13:03 GMT

First: Microsoft's Remote Desktop Protocol is disabled on Windows by default. So most computers are unaffected by issues highlighted as a result of the month's "Patch Tuesday". However: If you administer RDP enabled workstations — then you probably should read Microsoft's Security Research & Defense post about CVE-2012-0002.


CVE-2012-0002 was privately reported to Microsoft, and there are no reports of it being exploited in the wild. But it's only a matter of time before the patch is reverse, and this vulnerability is exploitable.

So read Microsoft's post, schedule, test, and deploy. And do it sooner than later.