New Search

Remote Desktop Protocol Server Information Disclosure Vulnerability - CVE-2019-1224

oval:org.cisecurity:def:6441

An information disclosure vulnerability exists when the Windows RDP server improperly discloses the contents of its memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the system. To exploit this vulnerability an attacker would have to connect remotely to an affected system and run a specially crafted application. The security update addresses the vulnerability by correcting how the Windows RDP server initializes memory.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows 10
  • Microsoft Windows Server 2019
Class:
vulnerability
Reference(s):
  • CVE-2019-1224
  • MSRC-CVE-2019-1224
  • KB4512501
  • KB4511553
  • KB4512508
Product(s):