Rapid7 VulnDB

MS14-030: Vulnerability in Remote Desktop Could Allow Tampering (2969259)

Back to Search

MS14-030: Vulnerability in Remote Desktop Could Allow Tampering (2969259)

Severity
5
CVSS
(AV:N/AC:H/Au:N/C:P/I:P/A:P)
Published
06/10/2014
Created
07/25/2018
Added
06/10/2014
Modified
10/15/2015

Description

This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow tampering if an attacker gains access to the same network segment as the targeted system during an active Remote Desktop Protocol (RDP) session, and then sends specially crafted RDP packets to the targeted system. By default, RDP is not enabled on any Windows operating system. Systems that do not have RDP enabled are not at risk.

Solution(s)

  • WINDOWS-HOTFIX-MS14-030-198310f6-3b0b-413e-9271-1b4d922742f9
  • WINDOWS-HOTFIX-MS14-030-1ea3b0dc-4a21-40f5-8845-a8bb93061d3f
  • WINDOWS-HOTFIX-MS14-030-24593f0c-0185-4ba6-afc5-501eff7cec55
  • WINDOWS-HOTFIX-MS14-030-6aca545a-2562-4e8d-b1c8-86ba7da75f8e
  • WINDOWS-HOTFIX-MS14-030-757415a6-070e-4018-b2b7-727c3c804023
  • WINDOWS-HOTFIX-MS14-030-759396cd-6805-4b93-bb95-20e48bdcac26
  • WINDOWS-HOTFIX-MS14-030-961999ce-641a-486e-889a-df7b637f0e9d
  • WINDOWS-HOTFIX-MS14-030-9f55b573-93d1-4ed9-9a07-f9665a6b8e87
  • WINDOWS-HOTFIX-MS14-030-a99e3511-d455-45f6-a743-a46181acd8bf
  • WINDOWS-HOTFIX-MS14-030-afee3d95-bbfe-4382-8d6d-64a9f1602835
  • WINDOWS-HOTFIX-MS14-030-bdfe83bd-c602-4e46-b466-ac8a4d366566
  • WINDOWS-HOTFIX-MS14-030-c6ecc1df-63b9-485f-88fd-b983ff6515ab
  • WINDOWS-HOTFIX-MS14-030-f30b5e49-87fa-40cb-a6b9-3b221e72cfbb

References

  • WINDOWS-HOTFIX-MS14-030-198310f6-3b0b-413e-9271-1b4d922742f9
  • WINDOWS-HOTFIX-MS14-030-1ea3b0dc-4a21-40f5-8845-a8bb93061d3f
  • WINDOWS-HOTFIX-MS14-030-24593f0c-0185-4ba6-afc5-501eff7cec55
  • WINDOWS-HOTFIX-MS14-030-6aca545a-2562-4e8d-b1c8-86ba7da75f8e
  • WINDOWS-HOTFIX-MS14-030-757415a6-070e-4018-b2b7-727c3c804023
  • WINDOWS-HOTFIX-MS14-030-759396cd-6805-4b93-bb95-20e48bdcac26
  • WINDOWS-HOTFIX-MS14-030-961999ce-641a-486e-889a-df7b637f0e9d
  • WINDOWS-HOTFIX-MS14-030-9f55b573-93d1-4ed9-9a07-f9665a6b8e87
  • WINDOWS-HOTFIX-MS14-030-a99e3511-d455-45f6-a743-a46181acd8bf
  • WINDOWS-HOTFIX-MS14-030-afee3d95-bbfe-4382-8d6d-64a9f1602835
  • WINDOWS-HOTFIX-MS14-030-bdfe83bd-c602-4e46-b466-ac8a4d366566
  • WINDOWS-HOTFIX-MS14-030-c6ecc1df-63b9-485f-88fd-b983ff6515ab
  • WINDOWS-HOTFIX-MS14-030-f30b5e49-87fa-40cb-a6b9-3b221e72cfbb

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;