CVE-2020-0765

An information disclosure vulnerability exists in the Remote Desktop Connection Manager RDCMan application when it improperly parses XML input containing a reference to an external entity, aka 'Remote Desktop Connection Manager Information Disclosure Vulnerability'...

November 12, 2024—KB5046616 (OS Build 20348.2849)

November 12, 2024—KB5046616 OS Build 20348.2849 For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows Server 2022, see its update history page. Note Follow @WindowsUpdate to find out wh...

How to Specify a Program to Start on Connection by Using Microsoft Remote Desktop Connection

This article describes how to specify a program to start on connection by using Microsoft Remote Desktop Connection. Requirements Remote Desktop Protocol RDP client such as the Microsoft Remote Desktop Connection client MSTSC.exe. Additional configuration on the XenApp Serverto accept these...

Update for RDC 7.1 to support restricted administration logons on Windows 7 and Windows Server 2008 R2

Update for RDC 7.1 to support restricted administration logons on Windows 7 and Windows Server 2008 R2 About this update This Remote Desktop Protocol RDP 7.1 update enables the Remote Desktop Connection client to perform restricted administration logons. It also enables the Remote Desktop Service...

The vulnerability of the RDP connection manager, Remote Desktop Connection Manager (RDCMan), related to improper processing of XML data, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the RDP connection manager, Remote Desktop Connection Manager RDCMan, is related to incorrect processing of XML data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information using a file with the RDG...

CVE-2020-0765

An information disclosure vulnerability exists in the Remote Desktop Connection Manager RDCMan application when it improperly parses XML input containing a reference to an external entity, aka 'Remote Desktop Connection Manager Information Disclosure Vulnerability'...

Information disclosure

An information disclosure vulnerability exists in the Remote Desktop Connection Manager RDCMan application when it improperly parses XML input containing a reference to an external entity, aka 'Remote Desktop Connection Manager Information Disclosure Vulnerability'...

Microsoft Issues March 2020 Updates to Patch 115 Security Flaws

Microsoft today released security updates to fix a total of 115 new security vulnerabilities in various versions of its Windows operating system and related software—making March 2020 edition the biggest ever Patch Tuesday in the company's history. Of the 115 bugs spanning its various products —...

Microsoft Patches 26 Critical Bugs in Big March Update

Microsoft tackled 115 bug fixes as part of its March Patch Tuesday update – 26 rated critical and 88 rated medium severity. The bugs patched span its product catalog, from Azure DevOps to Windows 10. This month’s haul is notable in its quantity and that there are only a few stand-out bugs causing...

KLA11686 Information disclosure vulnerability in Microsoft RDC Manager

An information disclosure vulnerability was found in Remote Desktop Connection Manager. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2020-0765 Related products Remote-Desktop-Connection-Manager CVE list CVE-2020-0765 warning KB list...

Microsoft Remote Desktop Connection Installed

Microsoft Remote Desktop Connection also known as Remote Desktop Protocol or Terminal Services Client is installed on the remote Windows host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid125835; scriptversion"1.3";...

MS15-004: Description of the security update for Windows 7 and Windows Server 2008 R2 if the Remote Desktop Connection 8.1 client update is installed: January 13, 2015

MS15-004: Description of the security update for Windows 7 and Windows Server 2008 R2 if the Remote Desktop Connection 8.1 client update is installed: January 13, 2015 Summary This security update resolves a privately reported vulnerability in the TS WebProxy component in Windows 7 and Windows...

MS13-029: Description of the security update for Remote Desktop Connection 7.0 Client: April 9, 2013

MS13-029: Description of the security update for Remote Desktop Connection 7.0 Client: April 9, 2013 This security update was rereleased June 25, 2013 for Remote Desktop Connection 7.0 Client on Windows XP Service Pack 3. We recommend that customers running the affected software apply the...

RDP Remote Desktop Connection - Exported components, External URLs, Native code usage vulnerabilities

HackApp vulnerability scanner discovered that application RDP Remote Desktop Connection published at the 'play' market has multiple vulnerabilities...

Ammyy Admin 3.2 - Authentication Bypass

Title: ==== Ammyy Admin - Hidden hard-coded option and Access Control vulnerability. Credit: ====== Name: Bhadresh Patel Company/affiliation: Cyberoam Technologies Private Limited Website: www.cyberoam.com CVE: ==== - CVE-2013-5581 for hidden hard-coded option CWE-255. - CVE-2013-5582 for failure...

Ammyy Admin 3.2 - Authentication Bypass

Ammyy Admin 3.2 - Authentication Bypass Title: ==== Ammyy Admin - Hidden hard-coded option and Access Control vulnerability. Credit: ====== Name: Bhadresh Patel Company/affiliation: Cyberoam Technologies Private Limited Website: www.cyberoam.com CVE: ==== - CVE-2013-5581 for hidden hard-coded...

Microsoft RDP ActiveX Control Remote Code Execution Vulnerability (2828223)

This host is missing a critical security update according to Microsoft Bulletin MS13-029. OpenVAS Vulnerability Test $Id: secpodms13-029.nasl 5346 2017-02-19 08:43:11Z cfi $ Microsoft RDP ActiveX Control Remote Code Execution Vulnerability 2828223 Authors: Veerendra GG Copyright: Copyright c 2013...

CVE-2013-1296

The CVE-2013-1296 issue affects Microsoft Remote Desktop Connection Client (mstscax.dll) ActiveX in versions 6.1 and 7.0. It is a use-after-free memory access vulnerability that allows remote code execution when a user visits a malicious webpage or when handling objects in memory, yielding the sa...

Amoy Royal Taobao guest security vulnerabilities and fixes-vulnerability warning-the black bar safety net

Official website: http://www.taodisoft.com 1, demo Station background turned out to have a place to upload pictures, does not prohibit the upload. 2, the upload image simple filtration, easy to break, Upload a php file, and can be executed. 3, the servervpsconfiguration severe lower, get a webshe...

Dig Emperor Management Platform security vulnerabilities-vulnerability warning-the black bar safety net

Official website: 1, demo Station background turned out to have a place to upload pictures, does not prohibit the upload. 2, the upload image simple filtration, easy to break, Upload a php file, and can be executed. 3, the servervpsconfiguration severe lower, get a webshell directly after is a...