Back to KEVs

CVE-2011-1968

The Remote Desktop Protocol (RDP) implementation in Microsoft Windows XP SP2 and SP3 and Windows Server 2003 SP2 does not properly process packets...

Basic Information

CVE State
PUBLISHED
Reserved Date
May 09, 2011
Published Date
August 10, 2011
Last Updated
August 06, 2024
Vendor
Microsoft
Product
Windows
Description
The Remote Desktop Protocol (RDP) implementation in Microsoft Windows XP SP2 and SP3 and Windows Server 2003 SP2 does not properly process packets in memory, which allows remote attackers to cause a denial of service (reboot) by sending crafted RDP packets triggering access to an object that (1) was not properly initialized or (2) is deleted, as exploited in the wild in 2011, aka "Remote Desktop Protocol Vulnerability."
Tags
windows

CVSS Scores

CVSS v2.0

7.1

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C

Exploit Status

Exploited in the Wild
Yes (2011-08-10 21:16:00 UTC) Source

References

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12806 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-065 http://www.us-cert.gov/cas/techalerts/TA11-221A.html

Known Exploited Vulnerability Information

Source Added Date
CVE 2011-08-10 21:16:00 UTC

Timeline

  • CVE ID Reserved

  • CVE Published to Public

  • Added to KEVIntel