Security News > 2020 > January > PoC Exploits Created for Recently Patched 'BlueGate' Windows Server Flaws
2020-01-27 12:49
Proof-of-concept exploits have been released for two recently patched Remote Desktop Gateway vulnerabilities that can be exploited for remote code execution.
Remote Desktop Gateway is a Windows Server component previously known as Terminal Services Gateway.
A technical analysis of the vulnerabilities was published just a few days later by researcher Marcus Hutchins and several PoC exploits have now been created.
Researcher Luca Marcelli says he has created a working PoC that achieves remote code execution, but he has yet to make his exploit public.
Hackers started exploiting the Windows Remote Desktop Services vulnerability tracked as BlueKeep several months after Microsoft released a patch.
News URL
Related news
- Week in review: Windows Server 2025 gets hotpatching option, PoC for SolarWinds WHD flaw released (source)
- Windows Server August updates fix Microsoft 365 Defender issue (source)
- Hackers use PHP exploit to backdoor Windows systems with new malware (source)
- Microsoft: August updates cause Windows Server boot issues, freezes (source)
- APT group exploits WPS Office for Windows RCE vulnerability (CVE-2024-7262) (source)
- Employee arrested for locking Windows admins out of 254 servers in extortion plot (source)
- Volt Typhoon Hackers Exploit Zero-Day Vulnerability in Versa Director Servers Used by MSPs, ISPs (source)
- Week in review: SonicWall critical firewalls flaw fixed, APT exploits WPS Office for Windows RCE (source)
- Microsoft fixes Windows Server performance issues from August updates (source)
- Adobe fixes Acrobat Reader zero-day with public PoC exploit (source)