Earlier we introduced Microsoft to fix a critical vulnerability in this month’s routine update that could cause a computer using Remote Desktop Services to become infected. The danger of this vulnerability is that when a computer can then use this as a base, it continues to infect other computers through vulnerabilities and thus exhibits an exponential increase.
In terms of the actual damage, the vulnerability is no less than WannaCry ransomware, because the attacker can completely control the victim computer. This vulnerability only affects legacy systems as well as Windows XP and Windows Server 2003, but the above systems stopped supporting it a few years ago. Stopping support means that Microsoft will not release any security updates to it, even if it is a known vulnerability, but this time Microsoft has made an exception again.
This time the Remote Desktop Services vulnerability and the SMB vulnerability used by WannaCry last time are exceptions because the harm is too great, so Microsoft still can’t bear to give up. However, in addition to these vulnerabilities, a large number of vulnerabilities have not been fixed. If you continue to use Windows XP and Server 2003, you will be infected one day.
In fact, most of the remote desktop services are used by Windows Server, which is the operating system used by many companies on the server. If the server is infected, it will not only affect the normal operation of the company but may even cause some products to leak user account passwords and other personal information.
If you are using Windows XP/2003, please download and install KB4500331 patch here.