APP: Windows RDP Gateway Server CVE-2020-0609 Denial of Service
This signature detects attempts to exploit a known vulnerability against Windows RDP Gateway. A successful attack can result in a denial-of-service condition.
Extended Description
A remote code execution vulnerability exists in Windows Remote Desktop Gateway (RD Gateway) when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Windows Remote Desktop Gateway (RD Gateway) Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0610.
Affected Products
Microsoft windows_server_2016
References
CVE: CVE-2020-0609
Short Name
APP:REMOTE:WIN-CVE-2020-0609DOS
Severity
Critical
Recommended
False
Recommended Action
None
Category
APP
Keywords
CVE-2020-0609 Denial Gateway RDP Server Service Windows of
Release Date
05/06/2025
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3808
Port
UDP/3391
False Positive
Unknown
Vendors
Microsoft