Wednesday, March 14th 2012

Microsoft Fixes Critical RDP Security Hole, Asks Users to Patch or Risk Attacks

Among its usual chunk of updates for Windows, Office, and other products covered by Microsoft Update, Redmond released a key security update for the Remote Desktop Protocol (2671387), and asked all users to apply it as soon as possible. It asked system administrators to give the patch "special priority," given the severity of the security hole. The security hole with RDP spans across all versions of Windows, across all machine architectures. The security hole allows hackers to gain access to RDP hosts and clients. Microsoft gives it 30 days before hackers can develop malware that can exploit the security hole. Find out more about the security hole, and its patch here.

Source: Microsoft
Add your own comment

13 Comments on Microsoft Fixes Critical RDP Security Hole, Asks Users to Patch or Risk Attacks

#1
v12dock
Nice to know considering I use RDP every day
Posted on Reply
#2
RejZoR
I'm not using it but then again i install latest updates as soon as they become available.
Posted on Reply
#3
FordGT90Concept
"I go fast!1!11!1!"
Microsoft needs to figure out how to install updates without requiring a restart. I had to restart my server to install this and another updates. :(
Posted on Reply
#4
Delta6326
Well I don't use RDP, have it disabled, but to be safe I will still install this update.
Posted on Reply
#5
Wrigleyvillain
PTFO or GTFO
by: FordGT90Concept
Microsoft needs to figure out how to install updates without requiring a restart. I had to restart my server to install this and another updates. :(
If you update code related to services then those services will need to be restarted to utilize the new code. Or apparently in this case to be secured. Don't really see any way around that, though I'm no software developer.
Posted on Reply
#6
Jizzler
by: Wrigleyvillain
If you update code related to services then those services will need to be restarted to utilize the new code. Or apparently in this case to be secured. Don't really see any way around that, though I'm no software developer.
Actually, that is the solution :)

If Windows Update could automatically stop>update>start services, then many full system restarts wouldn't be necessary.

I know some people who've done this manually to minimize downtime and/or have a remarkable up time.
Posted on Reply
#7
sy5tem
by: FordGT90Concept
Microsoft needs to figure out how to install updates without requiring a restart. I had to restart my server to install this and another updates. :(
by: Jizzler
Actually, that is the solution :)

If Windows Update could automatically stop>update>start services, then many full system restarts wouldn't be necessary.

I know some people who've done this manually to minimize downtime and/or have a remarkable up time.
oh yeah, just ad a crazy morning,. having to restart 4 servers here, and when you do that you have the phone ringing non stop ... lots of fun

we really need a restart less windows server... like the linux server.... this is driving me crazy considering that each windows server have like 6 vm runing on each ..... its a pain!
Posted on Reply
#8
trickson
OH, I have such a headache
Got it. Windows always updates for me automatically! And I also have this turned off. No need for it.
Posted on Reply
#9
eidairaman1
I knew anything related to remote registry/desktop is a major threat. These services should only be used if youre behind a hardware firewall/proxy/intranet/ethernet.
Posted on Reply
#10
Chevalr1c
by: FordGT90Concept
Microsoft needs to figure out how to install updates without requiring a restart. I had to restart my server to install this and another updates. :(
Indeed, if it is possible with Linux then why not with Windows? Only if the kernel will get modified by the updates/new drivers, a restart should be necessary.

Silly Windows...
Posted on Reply
#11
Dos101
by: sy5tem
oh yeah, just ad a crazy morning,. having to restart 4 servers here, and when you do that you have the phone ringing non stop ... lots of fun
That's why you restart them after hours, if at all possible. Last thing I want is the owner coming to me saying his email isn't working while I wait 30 minutes for our SBS 08 server to restart. :shadedshu


As with others I don't understand why no restarting is required in Linux while it is required in Windows?
Posted on Reply
#12
ERazer
have to remote connect to our office server to patch RDP, irony :laugh:
Posted on Reply
#13
newtekie1
Semi-Retired Folder
by: ERazer
have to remote connect to our office server to patch RDP, irony :laugh:
Yeah, I had to RDP into my servers to apply the patch as well.:roll:
Posted on Reply
Add your own comment