APP: Remote Desktop Denial Of Service
This signature detects attempts to exploit a known vulnerability in the Remote Desktop and Terminal Service Protocol. A successful attack can cause the service to stop responding. Remote code execution might also be possible.
Extended Description
A remote denial of service vulnerability has been reported in the kernel for Microsoft Windows. The vendor has confirmed that this vulnerability permits remote attackers to crash affected computers. This issue is due to a failure of the application to properly handle malformed Remote Desktop requests.
Affected Products
Microsoft windows_xp_media_center_edition
Short Name
APP:REMOTE:RDP-DOS
Severity
Major
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
CVE-2005-1218 Denial Desktop Of Remote Service bid:14259
Release Date
08/09/2005
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
Port
TCP/3389
False Positive
Unknown
Vendors
Microsoft
CVSS Score
5.0