CVE-2005-1794
Microsoft Terminal Server using Remote Desktop Protocol (RDP) 5.2 stores an RSA private key in mstlsapi.dll and uses it to sign a certificate, enabling remote attackers to spoof server public keys and perform MITM. The root cause is improper verification during key exchange, allowing an attacker ...