FortiClient VulnerabilityMicrosoft Remote Desktop Client CVE-2020-0611 Remote Code Execution Vulnerability
Description
A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server. An attacker who successfully exploited this vulnerability could execute arbitrary code on the computer of the connecting client. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. To exploit this vulnerability, an attacker would need to have control of a server and then convince a user to connect to it. An attacker would have no way of forcing a user to connect to the malicious server, they would need to trick the user into connecting via social engineering, DNS poisoning or using a Man in the Middle (MITM) technique. An attacker could also compromise a legitimate server, host malicious code on it, and wait for the user to connect. The update addresses the vulnerability by correcting how the Windows Remote Desktop Client handles connection requests.
Affected Applications
Windows RT 8.1
Windows Server version 1903 (Server Core installation)
Windows Server 2016
Windows Server version 1803 (Server Core Installation)
Windows Server 2012
Windows 8
Windows Server 2008
Windows 10
Windows 7
Windows Server version 1909 (Server Core installation)
Windows Server 2019
CVE References
CVE-2020-0611Other References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2020-0611| ID | 62152 |
| Created | Jan 14, 2020 |
| Description Updated |
Dec 21, 2023 |
| Risk |
|
| Coverage | FortiClient |
| OS | Windows |
| Vendor | Microsoft |
| Patch | auto |
| Application | Windows RT 8.1 , Windows Server version 1903 (Server Core installation) , Windows Server 2016 , Windows Server version 1803 (Server Core Installation) , Windows Server 2012 , Windows 8 , Windows Server 2008 , Windows 10 , Windows 7 , Windows Server version 1909 (Server Core installation) , Windows Server 2019 |