Slashdot Mirror

← Back to Stories (view on slashdot.org)

RDP Proof-of-Concept Exploit Triggers Blue Screen of Death

Posted by Soulskill on from the if-you-build-it dept.

mask.of.sanity writes "A working proof of concept has been developed for a dangerous vulnerability in Microsoft's Remote Desktop Protocol (RDP). The hole stands out because many organizations use RDP to work from home or access cloud computing services. Only days after a patch was released, a bounty was offered for devising an exploit, and later a working proof of concept emerged. Chinese researchers were the first to reveal it, and security professionals have found it causes a blue screen of death in Microsoft Windows XP and Windows Server 2003 machines. Many organizations won't apply the patch and many suspect researchers are only days away from weaponizing the code."

5 of 128 comments (clear)

  1. Remote Death Packet... by fuzzyfuzzyfungus · · Score: 4, Funny

    I heard a rumor that if you send an SYN-ACK after SYN request from a certain IP, you die.

    It totally happened to my cousin's friend.

    1. Re:Remote Death Packet... by Ihmhi · · Score: 4, Funny

      Now now, don't be so synackal.

      --
      Random Thoughts From A Diseased Mind (Not For Dummies)
  2. Re:Missed the real story by fuzzyfuzzyfungus · · Score: 4, Funny

    It has come to our attention that some of our customers may not have purchased upgrades in a timely manner... We encourage them to remedy this situation as swiftly as their checkbooks allow.

  3. Re:How important is this? by Tastecicles · · Score: 5, Funny

    ... If your mission critical server is still running Windows, then you're doing it wrong...

    FTFY. :)

    (just to please up the anti-microsoft crowd...)

    --
    Operation Guillotine is in effect.
  4. Re:Who uses RDP without a VPN? by parlancex · · Score: 1, Funny

    Who uses a VPN without a VPN? If you connect to a VPN without first tunneling it through a secure VPN, you're just asking for issues regardless of any exploit.