jsorg71
commented
5 years ago is this CVE-2019-0708?
Closed qacollective closed 5 years ago
jsorg71
commented
5 years ago is this CVE-2019-0708?
metalefty
commented
5 years ago IIRC, BlueKeep means CVE-2019-0708.
jsorg71
commented
5 years ago CVE-2019-0708 is only about Microsoft's RDP implementation. xrdp is a separate implementation from the docs. There is no shared code or MS code.
I am raising this issue to ask whether XRDP is vulnerable or immune to the new BlueKeep RDP vulnerability being talked about in the media lately? I'm thinking likely not, but I'm not familiar with the XRDP codebase or its origins. I thought that either way, it may be worth getting this issue and its response on the record in case anyone else visits with the same query. I couldn't find anything related to BlueKeep in this issues register yet.
https://www.abc.net.au/news/2019-07-08/microsoft-windows-vulnerability-bluekeep-and-cyber-security-risk/11277270?section=business