Vulnerabilities > CVE-2019-9510 - Improper Handling of Exceptional Conditions vulnerability in Microsoft Windows 10 and Windows Server 2019

047910
CVSS 7.8 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
local
low complexity
microsoft
CWE-755

Summary

A vulnerability in Microsoft Windows 10 1803 and Windows Server 2019 and later systems can allow authenticated RDP-connected clients to gain access to user sessions without needing to interact with the Windows lock screen. Should a network anomaly trigger a temporary RDP disconnect, Automatic Reconnection of the RDP session will be restored to an unlocked state, regardless of how the remote system was left. By interrupting network connectivity of a system, an attacker with access to a system being used as a Windows RDP client can gain access to a connected remote system, regardless of whether or not the remote system was locked. This issue affects Microsoft Windows 10, version 1803 and later, and Microsoft Windows Server 2019, version 2019 and later.

Vulnerable Configurations

Part Description Count
OS
Microsoft
2

The Hacker News

idTHN:68A285F339CB74D0E27FEBB011FED334
last seen2019-06-05
modified2019-06-05
published2019-06-04
reporterThe Hacker News
sourcehttps://thehackernews.com/2019/06/rdp-windows-lock-screen.html
titleUnpatched Bug Let Attackers Bypass Windows Lock Screen On RDP Sessions