RDP Clients Exposed to Reverse RDP Attacks by Major Protocol Issues

LASER_oneXM

Level 37
Thread author
Verified
Top Poster
Well-known
Feb 4, 2016
2,520
Multiple major vulnerabilities were discovered in the Remote Desktop Protocol (RDP) protocol which can allow bad actors to take control of computers connecting to a malicious server using remote code execution and memory corruption.

As discovered by Check Point Research, although most users don't even think twice when connecting to remote computers, RDP vulnerabilities can be exploited to allow attackers to connect from the server to the client as part of a so-called "reverse RDP attack."

Once the would-be attackers get a foothold on the RDP client using one of the just-discovered RDP vulnerabilities, they can expand the scope of the attack to the machine's entire local network.
The RDP protocol is designed to provide users with the means to connect to a computer over a network connection via a graphical interface, usually used to remotely connect to Windows machines.
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top