Published: 11/11/2014 Updated: 14/05/2019

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Subscribe to Windows Server 2012

The audit logon feature in Remote Desktop Protocol (RDP) in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 does not properly log unauthorized login attempts supplying valid credentials, which makes it easier for remote malicious users to bypass intended access restrictions via a series of attempts, aka "Remote Desktop Protocol (RDP) Failure to Audit Vulnerability."

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft windows server 2012 -
microsoft windows server 2012 r2
microsoft windows rt -
microsoft windows rt 8.1 -
microsoft windows 8.1 -
microsoft windows server 2008 r2
microsoft windows 7 -
microsoft windows server 2008 -
microsoft windows vista -
microsoft windows 8 -

CWE-287 http://blogs.technet.com/b/srd/archive/2014/11/11/assessing-risk-for-the-november-2014-security-updates.aspx http://www.securityfocus.com/bid/70981 http://secunia.com/advisories/60089 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-074 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2014-6318

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect