First published: Mon Jul 15 2019(Updated: )
A remote code execution vulnerability exists in Remote Desktop Services - formerly known as Terminal Services - when an authenticated attacker abuses clipboard redirection, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.
Credit: secure@microsoft.com
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft Remote Desktop Windows | <1.2.2691 | |
Microsoft Windows 10 | ||
Microsoft Windows 10 | =1607 | |
Microsoft Windows 10 | =1703 | |
Microsoft Windows 10 | =1709 | |
Microsoft Windows 10 | =1803 | |
Microsoft Windows 10 | =1809 | |
Microsoft Windows 10 | =1903 | |
Microsoft Windows 11 21h2 | =10.0.22000.376 | |
Microsoft Windows 7 | =sp1 | |
Microsoft Windows 8.1 | ||
Microsoft Windows RT 8.1 | ||
Microsoft Windows Server 2008 | =sp2 | |
Microsoft Windows Server 2008 | =r2-sp1 | |
Microsoft Windows Server 2008 | =r2-sp1 | |
Microsoft Windows Server 2012 | ||
Microsoft Windows Server 2012 | =r2 | |
Microsoft Windows Server 2016 | ||
Microsoft Windows Server 2016 | =1803 | |
Microsoft Windows Server 2016 | =1903 | |
Microsoft Windows Server 2019 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2019-0887 is a remote code execution vulnerability in Remote Desktop Services, also known as Terminal Services.
CVE-2019-0887 affects various versions of Microsoft Windows, including Windows 7, Windows 8.1, Windows 10, and Windows Server.
CVE-2019-0887 has a severity score of 8 (high severity).
An authenticated attacker can exploit CVE-2019-0887 by abusing clipboard redirection in Remote Desktop Services.
Yes, Microsoft has released security updates to address CVE-2019-0887. It is recommended to install the latest updates for the affected products.