Welcome to the Delta Advisory, this is to advise you of any important notifications that you need to know about to protect your systems so please read the following.
Microsoft Update, March 13, 2012
Microsoft has announced a critical level vulnerability (MS12-020) pertaining to Remote Desktop Protocol (RDP) that can be exploited for remote unauthenticated code-execution.
Although RDP is not enabled by default, when it is enabled many servers and workstations will be at risk should this vulnerability be exploited.
This threat is even greater if the servers or workstations are placed directly on the Internet with RDP enabled.
Please Note: RDP should not be published directly on the Internet and RDP should be remotely accessible only by trusted clients by way of a VPN or similar solution.
Microsoft has released a patch MS12–020 to rectify this problem, so if you’re using RDP, especially with direct access to the internet, please ensure that you apply this patch if you haven't already.
Since this announcement DELTA has been testing this patch on a variety of systems and monitoring the industry for feedback. To date there has been no known issues with its application.
If you are unsure of whether you have applied this patch or would like help in doing so please let us know.
Note: If DELTA already patches your systems then we have done this for you or we will be in contact shortly to arrange having this patch deployed.
The DELTA team is also monitoring industry updates on this threat and has stepped up its vulnerability assessments to assist in mitigating threats that will associate themselves to this vulnerability.
As more information becomes available rest assured we will be adding the footprint analysis of these known exploits into our monitoring system for early detection that may indicate a worm or other malicious activity.
For further information about this threat please click the link below
Or contact us on 0800 335 828
Kind Regards The Delta Team