The IT Nerd

If for whatever reason you are still running Windows XP, Windows Server 2003, and the like, you might want to check Windows Update. Despite the fact that Microsoft doesn’t officially support these OSes, you’ll likely find an update to mitigate against CVE-2019-0708. Put into English, Microsoft is patching a flaw in remote desktop services that could lead to a “WannaCry” style attack where a piece of malware hops from computer to computer at breakneck speed.

This flaw is present in Windows 7, Windows Server 2008, and Windows 2008 R2. All of which Microsoft still supports. However it’s also present on Windows XP and Windows Server 2003 which for reasons I don’t understand are still widely used. This flaw does not affect Windows 10, Windows 8.1, Windows 8, Windows Server 2019, Windows Server 2016, Windows Server 2012 R2, or Windows Server 2012. There are no known attacks that are in the wild as of yet. So Microsoft is clearly trying to stop this from blowing up.

Microsoft has an advisory here that users of XP and Server 2003 should read and heed. Happy Patch Tuesday!

This entry was posted on May 14, 2019 at 5:08 pm and is filed under Commentary with tags Microsoft. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.