APP: Remote Desktop Services CVE-2019-0708 Remote Code Execution
This signature detects attempts to exploit a known vulnerability against Microsoft Remote Desktop Services. A successful attack can lead to arbitrary code execution.
Extended Description
A remote code execution vulnerability exists in Remote Desktop Services formerly known as Terminal Services when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.
Affected Products
Siemens syngo_lab_process_manager
References
CVE: CVE-2019-0708
Short Name
APP:REMOTE:CVE-2019-0708-CE
Severity
Major
Recommended
True
Recommended Action
Drop
Category
APP
Keywords
CVE-2019-0708 Code Desktop Execution Remote Services
Release Date
05/21/2019
Supported Platforms
srx-branch-19.3
vsrx3bsd-19.2
srx-19.4
vsrx3bsd-19.4
srx-branch-19.4
vsrx-19.4
vsrx-19.2
srx-19.3
srx-branch-12.3
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx-12.3
vmx-19.3
srx-12.3
Sigpack Version
3727
Port
TCP/3389
False Positive
Unknown
Vendors
Siemens
Microsoft
CVSS Score
10.0