Public Information Broadcast:
Microsoft have reported a new vulnerability related to remote desktop.
Unusually Microsoft have provided patches for:
- Windows 2003 and Windows XP which are out of support
- Windows 7, Windows Server 2008 R2, and Windows Server 2008.
See here for further details:
Prevent a worm by updating Remote Desktop Services (CVE-2019-0708)
Almost one million Windows systems vulnerable to BlueKeep (CVE-2019-0708) | ZDNet
If you are running Windows 8 and Windows 10 are not affected by this vulnerability, and it is no coincidence that later versions of Windows are unaffected. Microsoft invests heavily in strengthening the security of its products, often through major architectural improvements that are not possible to backport to earlier versions of Windows.
------------------------------
Andrew Holton
Principal Software Engineer
Pitney Bowes
------------------------------