On March 14, 2012, Microsoft released a critical software patch that fixes a very high-risk vulnerability in the RDP (Remote Desktop) service installed on most Windows-based systems. The vulnerability may allow the execution of malicious code by sending a malformed packet to an RDP enabled system.
Security Bulletin: MS12-020
Description: Vulnerabilities in Remote Desktop Could Allow Remote Code Execution (2671387)
Action: Reboot Required
The issue became very critical when the proof-of-concept exploit code for the MS12-020 RDP vulnerability was leaked. It has been suspected Microsoft has a leak or somewhere in its MAPP information-sharing program.
Be sure to move on this quickly folks…
Below is a video demo: