Wed, Mar 14 2012 22:42
So by now I hope you've read that this is a seriously needed update. RDP vulnerability.
So you don't have RDP open from the outside? Great but it all depends on what exploit is ultimately coded up . Worst case someone codes up something that can wiggle inside your network and nail rdp ports that are open.
While SBS 2003/SBS 2008/SBS 2011/WHS and SBSE all use tsgateway or authenticated rdp to get inside and thus are not directly vulnerable you'll still want to watch this if you cannot immediately patch.
Right now there's a Metasploit bounty on a future proof of concept.
The clock is ticking ladies and gentlemen. Patch. Now.
Filed under: Security