CVE-2019-0787

Summary

A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote Desktop Client Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0788, CVE-2019-1290, CVE-2019-1291.

Affected Software

VendorProductVersion RangeStatus
MicrosoftWindows7 for 32-bit Systems Service Pack 1affected
MicrosoftWindows7 for x64-based Systems Service Pack 1affected
MicrosoftWindows8.1 for 32-bit systemsaffected
MicrosoftWindows8.1 for x64-based systemsaffected
MicrosoftWindowsRT 8.1affected
MicrosoftWindows10 for 32-bit Systemsaffected
MicrosoftWindows10 for x64-based Systemsaffected
MicrosoftWindows10 Version 1607 for 32-bit Systemsaffected
MicrosoftWindows10 Version 1607 for x64-based Systemsaffected
MicrosoftWindows10 Version 1703 for 32-bit Systemsaffected
MicrosoftWindows10 Version 1703 for x64-based Systemsaffected
MicrosoftWindows10 Version 1709 for 32-bit Systemsaffected
MicrosoftWindows10 Version 1709 for x64-based Systemsaffected
MicrosoftWindows10 Version 1803 for 32-bit Systemsaffected
MicrosoftWindows10 Version 1803 for x64-based Systemsaffected
MicrosoftWindows10 Version 1803 for ARM64-based Systemsaffected
MicrosoftWindows10 Version 1809 for 32-bit Systemsaffected
MicrosoftWindows10 Version 1809 for x64-based Systemsaffected
MicrosoftWindows10 Version 1809 for ARM64-based Systemsaffected
MicrosoftWindows10 Version 1709 for ARM64-based Systemsaffected
MicrosoftWindows 10 Version 1903 for 32-bit Systemsunspecifiedaffected
MicrosoftWindows 10 Version 1903 for x64-based Systemsunspecifiedaffected
MicrosoftWindows 10 Version 1903 for ARM64-based Systemsunspecifiedaffected

Weaknesses

  • Remote Code Execution

ADP Enrichment

CVE Program Container

Additional References

References