8.5
CVSSv2

CVE-2019-0887

Published: 15/07/2019 Updated: 08/08/2019
CVSS v2 Base Score: 8.5 | Impact Score: 10 | Exploitability Score: 6.8
CVSS v3 Base Score: 8 | Impact Score: 5.9 | Exploitability Score: 2.1
Vector: AV:N/AC:M/Au:S/C:C/I:C/A:C

Vulnerability Summary

A remote code execution vulnerability exists in Remote Desktop Services - formerly known as Terminal Services - when an authenticated attacker abuses clipboard redirection, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.

Vulnerability Trend

Recent Articles

Black Hat 2019: Microsoft Protocol Flaw Leaves Azure Users Open to Attack
Threatpost • Lindsey O'Donnell • 07 Aug 2019

LAS VEGAS – A path-traversal vulnerability in Microsoft’s Remote Desktop Protocol (RDP) leaves unpatched Azure customers open to attack. The flaw could allow for a virtual machine (VM) escape in Microsoft’s Hyper-V Manager, part of its Azure cloud platform.
Researchers with Check Point at a Wednesday Black Hat USA 2019 session detailed the medium-level vulnerability (CVE-2019-0887), which was patched last month in Microsoft’s July Patch Tuesday update. The flaw impacts Microsoft...

Microsoft Hyper-V Inherits Bug from Remote Desktop Protocol
BleepingComputer • Ionut Ilascu • 07 Aug 2019

A vulnerability in Microsoft's Remote Desktop Protocol (RDP) can also be used to escape virtual machines running on Hyper-V, the virtualization technology in Azure and Windows 10.
The bug is a path traversal that leads to remote execution and was reported to Microsoft almost a year ago as affecting only RDP and remained unpatched until recently, when it was discovered that it impacts Microsoft's Hyper-V product.
Initially, Microsoft validated the finding but dismissed a fix motivatin...

Microsoft Ignored RDP Vulnerability Until it Affected Hyper-V
BleepingComputer • Ionut Ilascu • 07 Aug 2019

A vulnerability in Microsoft's Remote Desktop Protocol (RDP) can also be used to escape virtual machines running on Hyper-V, the virtualization technology in Azure and Windows 10.
The bug is a path traversal that leads to remote execution and was reported to Microsoft almost a year ago as affecting only RDP and remained unpatched until recently, when it was discovered that it impacts Microsoft's Hyper-V product.
Initially, Microsoft validated the finding but dismissed a fix motivatin...

Microsoft Patch Tuesday – July 2019
Symantec Threat Intelligence Blog • Ratheesh PM • 10 Jul 2019

This month the vendor has patched 77 vulnerabilities, 16 of which are rated Critical.

Posted: 10 Jul, 201922 Min ReadThreat Intelligence SubscribeFollowtwitterfacebooklinkedinMicrosoft Patch Tuesday – July 2019This month the vendor has patched 77 vulnerabilities, 16 of which are rated Critical.As always, customers are advised to follow these security best practices:


Install vendor patches as soon as they are available.
Run all software with the least privileges required while still mainta...

Microsoft Patches A Pair of Zero-Days Under Active Attack
Threatpost • Tara Seals • 09 Jul 2019

Microsoft has addressed 77 vulnerabilities in its July Patch Tuesday update, with 15 of them rated as critical and two known to be under active exploit; and Adobe issued a small group of updates, with surprisingly none for Acrobat Reader or Flash.
Eleven of the critical bugs are for scripting engines and browsers, and the four others affect the DHCP Server, GDI+, the .NET Framework and the Azure DevOps Server/Team Foundation Server.
“Scripting engine, browser, GDI+, and .NET Framew...