Users unable to reconnect to disconnected session to access their Citrix virtual desktop.

Unable to reconnect to a disconnected session with error "Unknown Client error 1110" when using CVAD 2203 CU3 and earlier. When problem occurs, it is also not possible to connect via RDP. Logon stays at stuck under the "Other User Welcome" screen...

Microsoft Remote Desktop Services Remote Code Execution Vulnerability

Microsoft Remote Desktop Services, formerly known as Terminal Service, contains an unspecified vulnerability that allows an unauthenticated attacker to connect to the target system using RDP and send specially crafted requests. Successful exploitation allows for remote code execution. The...

freerdp and vinagre security, bug fix, and enhancement update

freerdp 2:2.1.1-1 - Update to 2.1.1 rhbz1834287. 2:2.0.0-47.rc4 - Fix SCARDINSUFFICIENTBUFFER error rhbz1803054 - Do not advertise /usb in help output rhbz1761144 vinagre 3.22.0-23 - Remove unused variable CovScan - Related: 1839744 3.22.0-22 - Rebuild due to new version of FreeRDP - Fix an issue...

Ligolo - Reverse Tunneling Made Easy For Pentesters, By Pentesters

Ligolo is a simple and lightweight tool for establishing SOCKS5 or TCP tunnels from a reverse connection in complete safety TLS certificate with elliptical curve. It is comparable to Meterpreter with Autoroute + Socks4a , but more stable and faster. Use case You compromised a Windows / Linux / Ma...

SharpRDP - Remote Desktop Protocol .NET Console Application For Authenticated Command Execution

To compile open the project in Visual Studio and build for release. Two DLLs will be output to the Release directory, you do not need those because the DLLs are in the assembly. If you do not want to use the provided DLLs you will need to .NET SDK to create the AxMSTSCLib.dll DLL. To create it...

Exploit for Use After Free in Microsoft

CVE-2019-0708 - BlueKeep RDP RDP Connection Sequence:...

November 14, 2017—KB4048954 (OS Build 15063.726 and 15063.728)

November 14, 2017—KB4048954 OS Build 15063.726 and 15063.728 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addressed issue where applications based on the Microsoft JET Database Engine...

Check Point Endpoint Security Full Disk Encryption RDP Connection Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/36315/info Check Point Software Endpoint Security Full Disk Encryption for Microsoft Windows is prone to a remote denial-of-service vulnerability. Exploiting this issue will allow attackers to crash the affected computer,...

Shylock Malware Evasion Techniques Now Detect RDP Connections

Plenty of malware samples contain embedded functionality that helps the code avoid detection by security software, or places encryption or packing barriers that keep security researchers from studying changes that would help vendors write detection signatures. The Shylock malware has taken that...

Check Point Endpoint Security Full Disk加密RDP连接拒绝服务漏洞

Bugraq ID: 36315 Check Point Endpoint Security Full Disk Encryption是一款功能强大的硬盘加密管理软件。 Check Point Endpoint Security Full Disk Encryption不能同时正确处理多个RDP连接，提交如下的测试方法可使服务器蓝屏： for /L %i in 1,1,20 do mstsc /v:127.0.0.%i Check Point Software Endpoint Security Full Disk Encryption 目前没有详细解决方案提供：...

Check Point Endpoint Security - Full Disk Encryption RDP Connection Denial of Service

Check Point Endpoint Security - Full Disk Encryption RDP Connection Denial of Service source: https://www.securityfocus.com/bid/36315/info Check Point Software Endpoint Security Full Disk Encryption for Microsoft Windows is prone to a remote denial-of-service vulnerability. Exploiting this issue...

DoS attack on Windows 2000 Terminal Server

This one's short and simple.. Description ----------- Any user with sufficient permission to log on to a Windows 2000 Terminal Server via RDP or ICA and access its filesystem can reboot the server at will. Exploit ------- - Open SYSTEMROOTSYSTEM32MSGINA.DLL for exclusive access read lock. I used...