Forum Discussion

Anonymous

7 years ago

Critical Remote Code Execution Vulnerability CVE-2019-0708...

Critical Remote Code Execution Vulnerability CVE-2019-0708 Addressed in Patch Tuesday Updates Microsoft has released its monthly security update for May. Included in this month's Patch Tuesday relea...

Cyber Exposure Alerts

Anonymous

7 years ago

Our scan currently looks for the installed KB from the windows update, and doesn't include logic to look for the target's NLA configuration.

But! You can use plugin 58453 to see if NLA is enabled or not on your target. Microsoft does state though: "...affected systems are still vulnerable to Remote Code Execution (RCE) exploitation if the attacker has valid credentials that can be used to successfully authenticate. " This is true even if NLA is enabled.

We like to err on the side of caution, and even though NLA being enabled would make exploitation less likely, it doesn't completely mitigate the risk of attack, which is why we still want this plugin to notify customers that are unpatched.

anthony_c_breat

7 years ago

Ryan can you tell us what KB the plugin 125313 Microsoft RDP RCE (CVE-2019-0708) (uncredentialed check) is looking for?

Forum Discussion

Critical Remote Code Execution Vulnerability CVE-2019-0708...

Recent Discussions

Microsoft’s September 2025 Patch Tuesday Addresses 80 CVEs (CVE-2025-55234)

Frequently Asked Questions About Chinese State-Sponsored Actors Compromising Global Networks

CVE-2025-7775: Citrix NetScaler ADC and Gateway Zero-Day RCE Vulnerability Exploited in the Wild

CVE-2025-25256: Proof of Concept Released for Fortinet FortiSIEM Command Injection Vulnerability

Microsoft’s August 2025 Patch Tuesday Addresses 107 CVEs (CVE-2025-53779)

Americas

Europe

Asia / Australia