Windows Remote Desktop Exploit In the Wild

angry tapir writes "Luigi Auriemma, the researcher who discovered a recently patched critical vulnerability in Microsoft's Remote Desktop Protocol (RDP), published a proof-of-concept exploit for it after a separate working exploit, which he said possibly originated from Microsoft, was leaked online on Friday. Identified as CVE-2012-0002 and patched by Microsoft on Tuesday, the critical vulnerability can be exploited remotely to execute arbitrary code on systems that accept RDP connections."

Re:Did anyone think it was secure anyway?

[1s44c]

Doesn't everyone with a clue use it via a VPN anyway?

Not many people with a clue would use Windows for anything serious anyway.

The target is people without a clue, people with a clue who were made to fuck up by management, or people who didn't know untrusted parties could get on their internal networks.