Remote Desktop Client Relative Path Traversal Enables Unauthorized Code Execution
Relative path traversal in Remote Desktop Client allows an unauthorized malicious user to execute code over a network.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
microsoft windows app client for windows desktop |
||
microsoft windows 10 version 1809 |
||
microsoft windows server 2019 |
||
microsoft windows server 2019 (server core installation) |
||
microsoft remote desktop client for windows desktop |
||
microsoft windows server 2022 |
||
microsoft windows 10 version 21h2 |
||
microsoft windows 11 version 22h2 |
||
microsoft windows 10 version 22h2 |
||
microsoft windows server 2025 (server core installation) |
||
microsoft windows 11 version 22h3 |
||
microsoft windows 11 version 23h2 |
||
microsoft windows server 2022, 23h2 edition (server core installation) |
||
microsoft windows 11 version 24h2 |
||
microsoft windows server 2025 |
||
microsoft windows 10 version 1507 |
||
microsoft windows 10 version 1607 |
||
microsoft windows server 2016 |
||
microsoft windows server 2016 (server core installation) |
||
microsoft windows server 2008 service pack 2 |
||
microsoft windows server 2008 service pack 2 (server core installation) |
||
microsoft windows server 2008 service pack 2 |
||
microsoft windows server 2008 r2 service pack 1 |
||
microsoft windows server 2008 r2 service pack 1 (server core installation) |
||
microsoft windows server 2012 |
||
microsoft windows server 2012 (server core installation) |
||
microsoft windows server 2012 r2 |
||
microsoft windows server 2012 r2 (server core installation) |
||
microsoft windows 10 1809 |
||
microsoft remote desktop |
||
microsoft windows 10 21H2 |
||
microsoft windows 11 22H2 |
||
microsoft windows 10 22H2 |
||
microsoft windows 11 23H2 |
||
microsoft windows server 23h2 |
||
microsoft windows 11 24H2 |
||
microsoft windows 10 1507 |
||
microsoft windows 10 1607 |
||
microsoft windows server 2008 sp2 |
||
microsoft windows server 2008 R2 |
||
microsoft windows server 2012 R2 |
Microsoft March 2025 Patch Tuesday fixes 7 zero-days, 57 flaws By Lawrence Abrams March 11, 2025 01:45 PM 2 .crit { font-weight:bold; color:red; } .article_section td { font-size: 14px!important; } Today is Microsoft's March 2025 Patch Tuesday, which includes security updates for 57 flaws, including six actively exploited zero-day vulnerabilities. This Patch Tuesday also fixes six "Critical" vulnerabilities, all remote code execution vulnerabilities. The number of bugs in each vulnerability...
Topics Security Off-Prem On-Prem Software Offbeat Special Features Vendor Voice Vendor Voice Resources Microsoft tackles 50-plus security blunders, Adobe splats 3D bugs, and Apple deals with a doozy
Patch Tuesday Microsoft’s Patch Tuesday bundle has appeared, with a dirty dozen flaws competing for your urgent attention – six of them rated critical and another six already being exploited by criminals. Let’s start with the six already exploited vulnerabilities, three of which impact Windows NTFS. The first is CVE-2025-24993 - a heap-based buffer overflow in NTFS used by Windows Server 2008 and later systems, as well as Windows 10 and 11. The flaw makes remote code execution (RCE) a poss...
Vulmon