This patch eliminates two vulnerabilities affecting the implementation of the RDP protocol:
The first vulnerability involves the way in which session encryption is implemented in certain versions of RDP. All RDP implementations permit the data in an RDP session to be encrypted. However, in the versions of RDP that are included in Windows 2000 and Windows XP, the checksums for the plain-text session data are sent without themselves being encrypted. An attacker who can ""eavesdrop on"" and record an RDP session might be able to conduct a straightforward cryptanalytic attack against the checksums and to recover the session traffic.
The second vulnerability involves the way in which the RDP implementation in Windows XP handles data packets that are malformed in a particular way. When RDP receives such data packets, the Remote Desktop service stops working. When this problem occurs, Windows stops working correctly also. An attacker does not have to be authenticated on an affected computer to deliver packets of this type to an affected computer.
Like it? Share with your friends!
Other Windows Software of Developer «Microsoft»:
PowerPoint Home and Student 2010 PowerPoint Home and Student 2010 gives you more ways to create and share dynamic presentations with your audience than ever before. Exciting new audio and visual capabilities help you tell a crisp, cinematic story that's as easy to create as it is powerful
Microsoft Joulemeter Microsoft Joulemeter is a software tool that estimates the power consumption of your computer. It tracks computer resources, such as CPU utilization and screen brightness, and estimates power usage. Joulemeter can be used for gaining visibility into energy
Analytics for Twitter Analytics for Twitter allows users to query Twitter directly in Microsoft Office Excel 2010. Utilizing the free PowerPivot Excel Add-in users can perform their own analysis such as who are the top Tweeters, what #hashtags are they using and do they have a
Server Appliance Kit AoP The Microsoft Server Appliance Kit 2.0 Add-on Pack extends the capabilities of the Server Appliance Kit 2.01. It adds two new features. Multiple Device Management (MDM) is an extensible platform for automating the management and administration of data cent
GDC 2007: The Future of Audio on Windows and Xbox 360 As the audio landscape evolves, Microsoft remains committed to a range of audio solutions for programmers and composers that effectively target platforms such as Windows and Xbox 360. Come hear what the future holds for audio APIs and tools from Microsoft.
Group Policy Management Console with SP1 Microsoft Group Policy Management Console (GPMC) with Service Pack 1 (SP1) unifies management of Group Policy across the enterprise. The GPMC consists of a MMC snap-in and a set of programmable interfaces for managing Group Policy. It simplifies the manage
Using Schema and Serialization to Leverage Business Logic Using Schema and Serialization to Leverage Business Logic. A companion piece to the Extreme XML article, Using Schema and Serialization to Leverage Business Logic. This version is the first release on CNET Download.com.What is new in this release:This vers
Windows 2000 Unchecked Buffer Help Security Vulnerability Patch The HTML Help facility in Windows includes an ActiveX control that provides much of its functionality. One of the functions exposed via the control contains an unchecked buffer, which could be exploited by a Web page hosted on an attacker?s site or sent to
Developing Messaging Applications the ActiveX Way Sample This sample code is provided in conjunction with the MSDN Library article, Developing Messaging Applications the ActiveX Way. The article explains the basic concepts of the Active Messaging system. This version is the first release on CNET Download.com.Wha
Microsoft Surface Pro Tablet Firmware/Driver March Unfortunately, the present package has been removed from Microsoft's servers, thus making the download impossible. However, you can still get a newer version for the same Surface device: download Microsoft Surface Pro Tablet Firmware/Driver July 2014.
SealPath Desktop If you are worried because you share files very often and you want to avoid unauthorized accesses, SealPath is for you. With SealPath you can control who has access to your document and what they can do with it. If you need to be sure that somebody does no
SafeMonk SafeMonk is a simple tool to encrypt your files before dending them to Dropbox. It creates a folder in your Dropbox, and everything in that folder is encrypted. With SafeMonk for Enterprise you can support Dropbox use in your organization and give your use
SpyCapture The SpyCapture is a small tool that enabled you to monitoring your computer when you are away. SpyCapture will capture the screen display, keystroke, mouse pointer and printer activity in frequence that depend on your own choice. SpyCapture will then encry
Smash Ensure your privacy. Keep your files out of unwanted hands. Smash implements U.S. Government approved file encryption and file wiping standards, and it does it with speed and finesse. Smash can even encrypt the names of your files.Requirements:Windows 95/9
Password Recovery Engine for Access Password Recovery Engine for Access is easy-to-use wizard-like software that will quickly and easily help you recover lost or forgotten passwords for Access database files (*.mdb files). If you do not remember where the *.mdb file you need is stored on you
SSuite Picsel Security Ever wanted to sidestep the Overlords of the internet with some real military grade encryption?Well... today is your lucky day... our Picsel application is a single, stand-alone, non installing, portable application that encrypts any and all plain text mes
Complete Protection System - File Protection The Complete Protection System (CPS) is designed to protect files and folders, while making them portable giving you peace of mind that even if the files are lost they won't be read. But why? Well there are many reasons such as high profile loss of data wi
Chiave Chiave features redesigned UI which sports Metro UI, Chromless and Simple. This is an application for file encryption and decryption using 512 Bit rijndael encryption algorithm with simple to use UIRequirements:Microsoft .Net Framework
Dial-up Password Recovery Master Dial-up Password Recovery Master is a password recovery solution for network and dial-up connections. The program recovers logins and passwords for LAN, Internet, and network access (including modem connections, ISDN lines, virtual private networks). In ad
TotalRecall A lot of different information about a user's activity is kept within the personal computer. Usually the user does not know about its existence. TotalRecall is a forensic analysis tools to reconstruct Internet Explorer and user's activity. TotalRecall inve
Supported Operating Systems:
Windows 2000 |
Comments on Windows 2000 RDP Protocol Security Vulnerability Patch:
Comments not found
Windows Software - Free Windows Downloads, Apps, Games, Freeware, Skype, Media Player, Antivirus, Gimp, Live, Starter for Windows XP, Vista, 7, 8, 10