Customer guidance for CVE-2019-0708 | Remote Desktop Services Remote Code Execution Vulnerability: May 14, 2019
On May 14, 2019 Microsoft issued the following statement regarding this security concern:
Microsoft is aware that some customers are running versions of Windows that no longer receive mainstream support. That means those customers will not have received any security updates to protect their systems from CVE-2019-0708, which is a critical remote code execution vulnerability.
Given the potential impact to customers and their businesses, we made the decision to make security updates available for platforms that are no longer in mainstream support (see download links in the following table). These updates are available from the Microsoft Update Catalog only. We recommend that customers running one of these operating systems download and install the update as soon as possible.
If you are running any version of Windows desktop or server, those devices are vulnerable to the EternalBlue, BlueKeep Worm and different Ransomware variants. If you need assistance installing any hot fixes to upgrade the protection of your systems, contact us at 630-953-3100 or TG@TomorrowsSolutions.com