1 min read

Microsoft warns of wormable vulnerabilities in Windows

Graham CLULEY

August 14, 2019

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
Microsoft warns of wormable vulnerabilities in Windows

On the second Tuesday of every month, regular as clockwork, Microsoft releases a bundle of security patches for its software and urges companies and home users to update their systems before vulnerabilities are exploited by malicious hackers.

Sure enough on this month’s Patch Tuesday, earlier this week, the company rolled out updates for its customers, but amongst them are fixes for two critical vulnerabilities which could be exploited by a fast-moving worm.

As Microsoft’s security team explains in a blog post, the remote code execution vulnerabilities could be abused by malware to spread from computer to computer without requiring any user interaction.

The flaws, CVE-2019-1181 and CVE-2019-1182, lurk within Microsoft”s Remote Desktop Service on Windows 7 SP1, Windows Server 2008 R2 SP1, Windows Server 2012, Windows 8.1, Windows Server 2012 R2, and all supported versions of Windows 10, including server versions.

Microsoft says that older versions of their software – Windows XP, Windows Server 2003, and Windows Server 2008 – are not affected. Furthermore, in Windows 10 Remote Desktop is disabled by default, meaning that companies are more likely to be at risk if they had deliberately chosen to enable the feature.

The good news is that Microsoft found the flaws itself as part of an ongoing process of strengthening the security of its code, and there have been no reports of the vulnerabilities of the exploits being taken advantage of by hackers in the wild.

That’s obviously comforting, but no reason for complacency. If a hacker was able to successfully exploit the flaws then they could potentially create a worm capable of spreading with the ferocity of past high profile attacks such as WannaCry.

Microsoft’s advice? Patch your computers at your earliest opportunity. It would also make sense to disable Remote Desktop Services if it is not required.

Just a few months ago Microsoft released security patches designed to fix the “BlueKeep” vulnerability, another flaw that it was feared could be exploited by a malicious worm to spread around the world.

tags


Author



Right now

Top posts

August Spam Debrief: Bitdefender Labs Warns of Fraud Campaigns Exploiting the Russia-Ukraine War

August Spam Debrief: Bitdefender Labs Warns of Fraud Campaigns Exploiting the Russia-Ukraine War

August 31, 2022

4 min read
Snake Keylogger Returns in Malspam Campaign Disguised as Business Portfolio from IT Vendor

Snake Keylogger Returns in Malspam Campaign Disguised as Business Portfolio from IT Vendor

August 30, 2022

2 min read
What is medical identity theft and how to protect against it

What is medical identity theft and how to protect against it

July 27, 2022

2 min read
Curious about Omegle? Here’s how the roulette-style chat platform can threaten your online privacy and security

Curious about Omegle? Here’s how the roulette-style chat platform can threaten your online privacy and security

July 07, 2022

5 min read
Identifying and Dealing with Online Bullying Is Not Impossible - School Presentation Inside

Identifying and Dealing with Online Bullying Is Not Impossible - School Presentation Inside

June 28, 2022

2 min read
Let’s Celebrate World Social Media Day by Improving Your Privacy and Security Online

Let’s Celebrate World Social Media Day by Improving Your Privacy and Security Online

June 28, 2022

3 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

Prison for ex-eBay staff who aggressively cyberstalked company's critics with Craigslist sex party ads and funeral wreaths Prison for ex-eBay staff who aggressively cyberstalked company's critics with Craigslist sex party ads and funeral wreaths
Graham CLULEY

September 30, 2022

2 min read
Honolulu Man Sabotaged Former Employer’s Network and Business Using Still-Active Credentials Honolulu Man Sabotaged Former Employer’s Network and Business Using Still-Active Credentials
Silviu STAHIE

September 30, 2022

1 min read
North Korean Gang Uses Compromised Open Source Software to Distribute Malware, Researchers Find North Korean Gang Uses Compromised Open Source Software to Distribute Malware, Researchers Find
Silviu STAHIE

September 30, 2022

1 min read