Sign In

Съвети


Advisory on BlueKeep Vulnerability


The USAs National Security Agency (NSA) has released a cybersecurity advisory for CVE-2019-0708—a vulnerability dubbed BlueKeep. Although Microsoft has issued a patch, potentially millions of machines are still unpatched and remain vulnerable.

CERT Bulgaria recommends users and administrators to review NSA’s news release and advisory, Microsoft Security Response Center’s "A Reminder to Update Your Systems to Prevent a Worm", and Microsoft Customer Guidance for CVE-2019-0708.

https://www.nsa.gov/News-Features/News-Stories/Article-View/Article/1865726/nsa-cybersecurity-advisory-patch-remote-desktop-services-on-legacy-versions-of/

https://www.nsa.gov/Portals/70/documents/what-we-do/cybersecurity/professional-resources/csa-bluekeep_20190604.pdf

https://blogs.technet.microsoft.com/msrc/2019/05/30/a-reminder-to-update-your-systems-to-prevent-a-worm/

https://support.microsoft.com/en-us/help/4500705/customer-guidance-for-cve-2019-0708

CERT Bulgaria strongly recommends patching the affected operating systems:

  • Windows 7, Windows Server 2008 R2, and Windows Server 2008
  • Windows 2003 and Windows XP

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0708

https://support.microsoft.com/en-us/help/4500705/customer-guidance-for-cve-2019-0708

05/06/2019

NEW VIRUSES RSS
VULNERABILITIES RSS