KEVIntel
PRO Back to KEVs
7.1
CVSS
High

CVE-2011-1968

PUBLISHED

The Remote Desktop Protocol (RDP) implementation in Microsoft Windows XP SP2 and SP3 and Windows Server 2003 SP2 does not properly process packets...

Not yet in CISA KEV

Exploited in the wild Remote
Vendor
Microsoft
Product
Windows
Published
Aug 10, 2011
EPSS

Automate This Intelligence with the Pro API

Everything on this page — CVSS, EPSS, exploit status, PoCs, scanner integrations, mentions, tags, and immediate honeypot data — is available programmatically for VM, SOC, and CTI workflows.

Learn about Pro

Description

The Remote Desktop Protocol (RDP) implementation in Microsoft Windows XP SP2 and SP3 and Windows Server 2003 SP2 does not properly process packets in memory, which allows remote attackers to cause a denial of service (reboot) by sending crafted RDP packets triggering access to an object that (1) was not properly initialized or (2) is deleted, as exploited in the wild in 2011, aka "Remote Desktop Protocol Vulnerability."

windows

CVSS Scores

CVSS v2.0 7.1 High

AV:N/AC:M/Au:N/C:N/I:N/A:C

Exploitation Status

Exploited in the wild

Recorded 2011-08-10 21:16:00 UTC · CVE

References

Known Exploited Vulnerability Sources

Catalogues that list this CVE as a known exploited vulnerability.

Source Added
CVE First 2011-08-10 21:16 UTC

Timeline

  • Added to KEVIntel

  • CVE Published to Public

  • CVE ID Reserved