Microsoft Release Urgent Security Patch
Unpatched Windows 7 Systems Exposed to WannaCry Style Worm
As part of its May 14 Patch Tuesday, Microsoft released an urgent security fix for several older versions of Windows. For users still running Windows 7, Windows XP or Windows Server 2003, the patch repairs a potentially "wormable" flaw in those systems. If left unpatched, the systems could be hit by a malware attack like WannaCry.
The vulnerability, CVE-2019-0708, is in remote desktop services (also known as Terminal Services). To exploit the vulnerability "an attacker would need to send a specially crafted request to the target systems Remote Desktop Service via RDP," Microsoft officials noted. The update corrects how Remote Desktop Services handles connection requests.
The fact that Microsoft would issue a patch for Windows XP, which has been out of support status for many years indicates the scope of this threat.
If you have a system running Windows 7, you are urged to make sure Windows Update is set to automatically download and install updates. alternatively, you can manually install the patch by following the guidance issued by Microsoft.
Please call our Support Department if we can assist you in patching your systems.