APP: Remote Desktop Protocol Server Information Disclosure
This signature detects attempts to exploit a known vulnerability against implementation of RDP. A successful attack can lead to Information Disclosure.
Extended Description
An information disclosure vulnerability exists when the Windows RDP server improperly discloses the contents of its memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the system. To exploit this vulnerability, an attacker would have to connect remotely to an affected system and run a specially crafted application. The security update addresses the vulnerability by correcting how the Windows RDP server initializes memory.
Affected Products
Microsoft windows_server_2019
References
CVE: CVE-2019-1225
Short Name
APP:REMOTE:RDPEUDP2-INFO-DISC
Severity
Minor
Recommended
False
Recommended Action
None
Category
APP
Keywords
CVE-2019-1224 CVE-2019-1225 Desktop Disclosure Information Protocol Remote Server
Release Date
08/20/2019
Supported Platforms
srx-branch-19.3
vsrx3bsd-19.2
srx-19.4
vsrx3bsd-19.4
srx-branch-19.4
vsrx-19.4
vsrx-19.2
srx-19.3
srx-branch-12.3
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx-12.3
vmx-19.3
srx-12.3
Sigpack Version
3709
False Positive
Unknown
Vendors
Microsoft
CVSS Score
5.0