Exploitation of Windows CVE-2019-0708 (BlueKeep): Three Ways to Write Data into Kernel with RDP PDU
Posted: Mon Sep 30, 2024 12:36 pm
In May 2019, Microsoft released an out-of-band patch update for remote code execution vulnerability CVE-2019-0708, which is also known as “BlueKeep” and resides in code to Remote Desktop Services (RDS). This vulnerability is pre-authentication and requires no user interaction, making it particularly dangerous as it has the unsettling potential to be weaponized into a destructive exploit.
https://unit42.paloaltonetworks.com/exp ... h-rdp-pdu/
https://unit42.paloaltonetworks.com/exp ... h-rdp-pdu/