Skip to navigation
Latest News

Hackers write Windows RDP exploit days after MS warning


By Stewart Mitchell

Posted on 16 Mar 2012 at 13:22

SophosLabs says it has seen proof-of-concept code which tries to exploit the recently announced Microsoft Remote Desktop Protocol (RDP) vulnerability, causing PCs to crash.

Earlier this week, Microsoft warned people to install security update MS12-020, which addressed a remote code execution vulnerability in RDP affecting all versions of Windows.

At the time, the software giant said it expected to see hackers targeting the weakness within a month, but Sophos believes exploit code has already been written and published on Chinese websites.

“Microsoft warned earlier this week that it expected malicious hackers to exploit the flaw within 30 days. Well, that's already happening," reports a post on the Sophos blog.

"The code we've seen - in the form of Python scripts - attempts to exploit the MS12-020 RDP vulnerability and causes Windows computers to blue screen.”

Although the code was regarded as a proof of concept, Sophos said it wouldn't be a surprise if whoever was writing this code “further developed the attacks to produce a fast-spreading internet worm”.

Sophos repeated Microsoft's warning to patch as soon as possible.

Subscribe to PC Pro magazine. We'll give you 3 issues for £1 plus a free gift - click here
Be the first to comment this article

You need to Login or Register to comment.



Most Commented News Stories
Latest Blog Posts Subscribe to our RSS Feeds
Latest ReviewsSubscribe to our RSS Feeds
Latest Real World Computing


Sponsored Links

Your email:

Your password:

remember me


Hitwise Top 10 Website 2010

PCPro-Computing in the Real World Printed from

Register to receive our regular email newsletter at

The newsletter contains links to our latest PC news, product reviews, features and how-to guides, plus special offers and competitions.