|
Patch reliability is unclear. Unless you have an immediate, pressing need to install a specific patch, don't do it. |
-
There’s a manual workaround for the RD Gateway security holes, CVE-2020-0609 and -0610
Marcus Hitchins has come up with a way to subvert the vulnerabilities described in this month’s Remote Desktop Gateway fixes CVE-2020-0609 and CVE-2020-0610.
(Protip: If you aren’t in charge of a RD Gateway network, forget about it.)
Posting on the KryptosLogic site, he gives manual bypass details:
If for whatever reason you are unable to install the patch, it is still possible to prevent exploitation of these vulnerabilities. RDG supports the HTTP, HTTPS, and UDP protocols, but the vulnerabilities only exist in the code responsible for handling UDP. Simply disabling UDP Transport, or firewalling the UDP port (usually port 3391) is sufficient to prevent exploitation.
Kevin Beaumont notes that it’ll involve a performance hit.
Thx Florian Roth.
Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Get Plus!
Recent Topics
-
Ubuntu 25.04 (Plucky Puffin)
by 1 hour, 5 minutes ago
-
24H2 fixed??
by 47 minutes ago
-
Uninstalr Updates
by 3 hours, 15 minutes ago
-
Apple zero days for April
by 8 hours, 39 minutes ago
-
CVE program gets last-minute funding from CISA – and maybe a new home
by 14 hours, 10 minutes ago
-
Whistleblower describes DOGE IT dept rumpus at America’s labor watchdog
by 1 day, 1 hour ago
-
Seeing BSOD’s on 24H2?
by 8 hours, 54 minutes ago
-
TUT For Private Llama LLM, Local Installation and Isolated from the Internet.
by 16 hours, 23 minutes ago
-
Upgrade from Windows 10 to 11
by 1 day, 10 hours ago
-
Microsoft : AI-powered deception: Emerging fraud threats and countermeasures
by 1 day, 13 hours ago
-
0patch
by 14 hours, 28 minutes ago
-
Devices might encounter blue screen exception with the recent Windows updates
by 1 day, 6 hours ago
-
Windows 11 Insider Preview Build 22631.5261 (23H2) released to Release Preview
by 1 day, 16 hours ago
-
Problem opening image attachments
by 1 day, 18 hours ago
-
advice for setting up a new windows computer
by 2 days, 8 hours ago
-
It’s Identity Theft Day!
by 1 day, 13 hours ago
-
Android 15 require minimum 32GB of storage
by 2 days, 13 hours ago
-
Mac Mini 2018, iPhone 6s 2015 Are Now Vintage
by 2 days, 13 hours ago
-
Hertz says hackers stole customer credit card and driver’s license data
by 2 days, 14 hours ago
-
Firefox became sluggish
by 6 hours, 36 minutes ago
-
Windows 10 Build 19045.5794 (22H2) to Release Preview Channel
by 2 days, 18 hours ago
-
Windows 11 Insider Preview Build 22635.5235 (23H2) released to BETA
by 2 days, 18 hours ago
-
A Funny Thing Happened on the Way to the Forum
by 1 day, 15 hours ago
-
Download speeds only 0.3Mbps after 24H2 upgrade on WiFi and Ethernet
by 12 hours, 55 minutes ago
-
T-Mobile 5G Wireless Internet
by 1 day, 16 hours ago
-
Clock missing above calendar in Windows 10
by 1 day, 17 hours ago
-
Formula to Calculate Q1, Q2, Q3, or Q4 of the Year?
by 3 days, 9 hours ago
-
The time has come for AI-generated art
by 2 days, 13 hours ago
-
Hackers are using two-factor authentication to infect you
by 2 days, 23 hours ago
-
23 and you
by 3 days, 6 hours ago
Remembering Woody
