Some channels are responsible for the core functionality of RDP, such as graphical and input data, while other channels handle protocol extensions, such as clipboard, drive and printer redirection. The Remote Desktop Protocol (RDP) splits a single connection into multiple logical connections called virtual channels for handling different types of data. Start with Some Background: RDP Virtual Channels The latest versions of Windows (client and server editions) are affected by this vulnerability, and it goes back at least to Windows Server 2012 R2, so we can say that the majority of Windows versions in use today are affected. This could lead to data privacy issues, lateral movement and privilege escalation. ![]() ![]() This vulnerability enables any standard unprivileged user connected to a remote machine via remote desktop to gain file system access to the client machines of other connected users, to view and modify clipboard data of other connected users, and to impersonate the identity of other users logged on to the machine using smart cards. ![]() Microsoft has released a fix in the latest security update and the vulnerability is now identified as CVE-2022-21893. We reported the vulnerability to Microsoft in a coordinated disclosure process. ![]() In this blog post we are going to discuss the details of a vulnerability in Windows Remote Desktop Services, which we recently uncovered.
0 Comments
Leave a Reply. |