This patch eliminates two vulnerabilities affecting the implementation of the RDP protocol:
The first vulnerability involves the way in which session encryption is implemented in certain versions of RDP. All RDP implementations permit the data in an RDP session to be encrypted. However, in the versions of RDP that are included in Windows 2000 and Windows XP, the checksums for the plain-text session data are sent without themselves being encrypted. An attacker who can ""eavesdrop on"" and record an RDP session might be able to conduct a straightforward cryptanalytic attack against the checksums and recover the session traffic.
The second vulnerability involves the way in which the RDP implementation in Windows XP handles data packets that are malformed in a particular way. When RDP receives such data packets, the Remote Desktop service stops working. When this problem occurs, Windows stops working correctly also. An attacker does not have to be authenticated on an affected computer to deliver packets of this type to an affected computer.
Like it? Share with your friends!
Other Windows Software of Developer «Microsoft»:
Microsoft BizTalk Adapter v2.0 for mySAP Business Suite Microsoft BizTalk Adapter v2.0 for mySAP Business Suite integrates SAP data seamlessly from SAP R/3 4.X and R/3 6.20 (Enterprise) systems with BizTalk Server 2004. This Adapter supports BAPI, RFC and IDocs from SAP Server. The Microsoft BizTalk Adapter v2.
Agent 2.0 Character: Merlin Character File Microsoft Agent 2.0 character data file (.acs format) for Merlin. Microsoft Agent is a software technology that enables an enriched form of user interaction that can make using and learning to use a computer easier and more natural. This version is the fir
FrontPage Web Template for the Human Resources Site Customize your FrontPage-based Web site. The site comes complete with a home page, links, and pages ready for you to add your own content into. FrontPage Web site templates can be used to create an entire Web site from scratch. These custom sites have been
Mobile Ink To-Do Starter Kit This Visual C# and Visual Basic .NET Starter Kit is a complete Mobile PC and Tablet PC application. The starter kit contains a semi-transparent form for taking notes and keeps them synchronized through a Web Service. It also supports battery awareness and
POS for .NET 1.1 Microsoft POS for .NET is a class library that is part of Microsoft Windows Embedded for Point of Service. The class library provides .NET applications with a simple and consistent interface for communicating with Point of Service (POS) peripheral devices.
Windows Azure Platform Training Kit The Windows Azure Platform Training Kit includes a comprehensive set of technical content including hands-on labs, presentations, and demos that are designed to help you learn how to use the Windows Azure platform, including Windows Azure, SQL Azure, and t
Microsoft Windows NT 4.0 Patch: Malformed Environment Variable Microsoft has released a patch that eliminates a security vulnerability in Microsoft Windows NT 4.0 and Windows 2000. The vulnerability could allow a malicious user to make some or all of the memory on an affected server unavailable, potentially slowing or
TaskVision Server TaskVision is a sample smart client task management application built using the Windows Forms classes of the Microsoft .NET Framework -- an integral Windows component that supports building and running the next generation of applications and XML Web servic
A+ Folder Locker Free Edition Many people believe that passwords are all that's needed to keep pirating eyes away from the data stored on their computers. But if that were true, there'd be no such thing as a "hacker." While passwords are certainly helpful, it takes a lot more than that
Appin Encryption Utility Appin Security Data Encryption/Decryption system lets you encrypt and decrypt your files and data using keys. It is simple, robust and speedy for almost all kinds of files. The Appin encryption suite is just a freeware version released for everyone however
Stealth Recorder Pro Stealth Recorder Pro is a new type of real-time high quality MP3/WMA/WAV recorder that supports Remote Control Feature. It enables you to record a variety of sounds and transfer them automatically through the Internet without being notified by original loc
SHA1 Generator SHA1 Generator is a free SHA-1 checksum generation tool, it can quickly compute the SHA-1 hash checksum of any files. In addition, you can verify the hash checksum to ensure the file integrity is correct with the matching file. It is fast, extremely small
Encryption and Decryption A text encryption that allows you protect the privacy of your email messages. Encryption and Decryption encrypts your messages with AES 256-bit key encryption algorithm to provide high protection against unauthorized data access. Once the information has b
SecurityPlus SecurityPlus! is a powerful and on the fly encryption / decryption utility with file viewer, thumbnails, slideshow and program selector, runs in the tray and offers full privacy of images, other files, and applications using on-the-fly encryption/decryptio
Infinite One-Time Pad Infinite One-Time Pad is secure text encryption and decryption software. This is the perfect cryptographic software for protecting your communications. It implements the concept of the legendary One-Time Pad to produce a cipher text that is unbreakable. Th
Password Inspiration If you can't think of a new password, are forced to use special characters, and are afraid you will forget them, then solve your common password problems with this password generator. Password Inspiration suggests passwords made from lists of positive and
FaceCode Password Bank FaceCode Password Bank is user-friendly face recognition password management software, using advance face recognition technology to automatically log you on to your password protected Web sites and applications. FaceCode operates with regular Web camera, v
SafeKuvert x64 SafeKuvert is a file encryption software that ensures the confidentiality of your data and provides you with the ability to identify the owner of the data. SafeKuvert is a Windows application that enables you to encode (encrypt and digitally sign) data fro
Supported Operating Systems:
Windows XP |
Comments on Windows XP RDP Protocol Security Vulnerability Patch:
Comments not found
Windows Software - Free Windows Downloads, Apps, Games, Freeware, Skype, Media Player, Antivirus, Gimp, Live, Starter for Windows XP, Vista, 7, 8, 10