CVE-2019-0708

9.8
9.8 / 10
CRITICAL

A remote code execution vulnerability exists in Remote Desktop Services formerly known as Terminal Services when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.

Weakness: Use After Free

Referencing memory after it has been freed can cause a program to crash, use unexpected values, or execute code.

Published: 2019-05-16

Vulnerable Products

Community Advisory

This section is open source, for any additional information that enhances or clarifies the official advisory above.

Improve Advisory

CVE-2019-0708 Exploits (127)

Show all exploits (+117):

Official CVE References

View references (13)