MS15-067: Vulnerability in RDP Could Allow Remote Code Execution (3073094)
Critical Nessus Plugin ID 84743
SynopsisThe remote Windows host is affected by a remote code execution vulnerability.
DescriptionThe remote Windows host is affected by a remote code execution vulnerability due to improper handling of packets by the Remote Desktop Protocol (RDP) service. A remote attacker can exploit this, by sending a specially crafted sequence of packets to the remote RDP server, to execute arbitrary code.
SolutionMicrosoft has released a set of patches for Windows 7, 8, and 2012.