AnsweredAssumed Answered

Microsoft Windows Remote Desktop Protocol Remote Code Execution Vulnerability (MS12-020)

Question asked by ozpek on Jan 21, 2013
Latest reply on Jan 22, 2013 by ozpek

Hi,

 

I see this vulnerability on my 2k3 server with Qualys scan but on the server, MS12-036 has been patched before and as it s written in MSwebsite, MS12-036 covers MS12-020 and you do not have to patch MS12-020 again. So, does anybody know why I still see this vulnerability in my reports? How can I verify it?

 

 

Microsoft Security Bulletin MS12-036 - Critical

Vulnerability in Remote Desktop Could Allow Remote Code Execution (2685939)

 

Windows Server 2003 Service Pack 2
(KB2685939)
Remote Code ExecutionCriticalKB2621440 in MS12-020 replaced by KB2685939
Windows Server 2003 x64 Edition Service Pack 2
(KB2685939)
Remote Code ExecutionCriticalKB2621440 in MS12-020 replaced by KB2685939
Windows Server 2003 with SP2 for Itanium-based Systems
(KB2685939)
Remote Code ExecutionCriticalKB2621440 in MS12-020 replaced by KB2685939

 

 

Regards

Outcomes