The remote host is affected by multiple vulnerabilities in Remote Desktop (RD) Gateway :
A remote code execution vulnerability exists in Microsoft RD Gateway due to improper validation of user-supplied data. An unauthenticated, remote attacker can exploit this, via a series of specially crafted requests, to execute arbitrary code. (CVE-2020-0609, CVE-2020-0610)
A denial of service (DoS) vulnerability exists in Microsoft RD Gateway due to improper validation of user-supplied data. An unauthenticated, remote attacker can exploit this, via a specially crafted request, to cause the process to terminate. (CVE-2020-0612)
Binary data microsoft_rd_gateway_rce.nbin
Vendor | Product | Version | CPE |
---|---|---|---|
microsoft | windows | cpe:/o:microsoft:windows | |
microsoft | remote_desktop_protocol | cpe:/a:microsoft:remote_desktop_protocol |