Exploit for Microsoft RDP vulnerability already in the wild?
The race is on to develop a working exploit for MS-12-020 - A serious vulnerability in Microsoft's Remote Desktop Protocol which was patched earlier this week.
The vulnerability affects all current versions of Windows (though the service is usually disabled by default and there are other methods of mitigating the risk). While Microsoft originally predicted that it would take approximately 30 days for an exploit to surface, it appears that the timeframe may be cut shorter. Much shorter.
Hacker jobsite gun.io is offering a reward of $1500 for development of a Metasploit module while various Chinese websites are already posting screenshots and Python scripts of an allegedly working exploit. 30 days? How about 1 week!?
- Wed, 2012-06-13 05:42
- Thu, 2012-03-01 01:46
- Tue, 2013-05-07 11:21