Microsoft has announced the discovery of a vulnerability (CVE-2019-0708, also known as BlueKeep) that is present on Windows XP, Server 2003, and Server 2008 systems. Due to the seriousness of the vulnerability, Microsoft has released a patch for those operating systems, despite their currently unsupported status. This patch also impacts Windows 7 and Server 2008 R2, which are still under the support of Microsoft.
What the vulnerability is and why it puts your business at risk
The specific vulnerability, known by Microsoft as CVE-2019-0708 or BlueKeep, allows attackers to connect to a system using Remote Desktop Services by sending specially crafted connection requests. The end user does not need to take any action in order for the vulnerability to be exploited. Once the attacker is in the system, they can execute malicious code, install programs and steal or encrypt data. The reason this vulnerability is so severe is that it has the potential to spread rapidly via affected computers, which is why ADNET is recommending that the vulnerability be patched immediately.
What you need to know about patching your systems for Microsoft CVE-2019-0708/BlueKeep
If you are subscribed to ADNET’s Managed IT Services for servers and workstations, including Foundations Desktop, Foundations Server, DesktopCare, ServerCare and TotalCare, ADNET will automatically patch this vulnerability for systems covered by your subscription as part of your managed service. If you are not subscribed to any of the previously named Managed Services, ADNET can help patch your systems manually. We strongly recommend you do NOT attempt to update your own machines as these patches have the potential to cause complications if not implemented correctly. Please contact your ADNET Engagement Manager to determine the best way for your systems to be patched.