The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Vulnerability of Windows XP, 2003: denial of service via RDP

Synthesis of the vulnerability 

An attacker can send a sequence of malicious packets to a Remote Desktop Protocol service, in order to reload the system.
Vulnerable software: Windows 2003, Windows XP.
Severity of this announce: 3/4.
Creation date: 10/08/2011.
Références of this computer vulnerability: 2570222, BID-48995, CERTA-2011-AVI-441, CVE-2011-1968, MS11-065, VIGILANCE-VUL-10903.

Description of the vulnerability 

The RDP protocol (Remote Desktop Protocol) is used to remotely access to a server. It is used by the following services:
 - Terminal Services
 - Remote Desktop
 - Remote Assistance
 - Windows Small Business Server 2003 Remote Web Workplace

When a Remote Desktop Protocol service receives special packets, it does not correctly process its memory.

An attacker can therefore send a sequence of malicious packets to a Remote Desktop Protocol service, in order to reload the system.
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

This computer vulnerability alert impacts software or systems such as Windows 2003, Windows XP.

Our Vigil@nce team determined that the severity of this computer threat alert is important.

The trust level is of type confirmed by the editor, with an origin of intranet client.

An attacker with a expert ability can exploit this security vulnerability.

Solutions for this threat 

Windows XP, 2003: patch for RDP.
A patch is available:
Windows XP SP3
  http://www.microsoft.com/downloads/details.aspx?familyid=C07E1630-43BA-491E-BD59-9EB53105986C
Windows XP x64 SP2
  http://www.microsoft.com/downloads/details.aspx?familyid=797A01DC-39FB-4511-832A-42D2975133F5
Windows 2003 SP2
  http://www.microsoft.com/downloads/details.aspx?familyid=694BA1A6-7512-497D-A572-646A6E07B13B
Windows 2003 x64 SP2
  http://www.microsoft.com/downloads/details.aspx?familyid=308DA543-D49D-4591-8BBC-D65C524BB0AD
Windows 2003 Itanium SP2
  http://www.microsoft.com/downloads/details.aspx?familyid=3B459BF0-7844-4740-895C-D149D56E781F
The Microsoft announce indicates workarounds.
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

Computer vulnerabilities tracking service 

Vigil@nce provides a cybersecurity database. The Vigil@nce computer vulnerability tracking service alerts your teams of vulnerabilities or threats impacting your information system.