Mon, Mar 19 2012 23:26
Risk report for MS12-020
Today's risk report for MS12-020:
There's a Metasploit module out today that has at this time a Denial of Service impact. We have not yet seen a Remote code exploit at this time.
But clock is still ticking.
Filed under: Security
Metasploit :: Browse Exploit & Auxiliary Modules:
This module exploits the MS12-002 RDP vulnerability originally discovered and reported by Luigi Auriemma. The flaw can be found in the way the T.125 ConnectMCSPDU packet is handled in the maxChannelIDs field, which will result an invalid pointer being used, therefore causing a denial-of-service condition.