.webp "Critical Heap Overflow Vulnerabilities in Windows RDP and RD Gateway Allow Remote Code Execution")
Microsoft has revealed two critical remote desktop vulnerabilities (CVE-2025-29966 and CVE-2025-29967) that could allow attackers to execute arbitrary code remotely without authentication. These flaws affect Windows Remote Desktop Protocol and Remote Desktop Gateway services, posing significant security risks for exposed systems.
Affected: Microsoft Windows Remote Desktop services, Remote Desktop Gateway.
Affected: Microsoft Windows Remote Desktop services, Remote Desktop Gateway.
Keypoints
- Two heap-based buffer overflow vulnerabilities have been identified in Windows RDP and RD Gateway services.
- Both vulnerabilities have a high severity score of 8.8 on CVSS v3.1, indicating critical risk potential.
- No current active exploits are reported, but the vulnerabilities could allow full system control if exploited.
- Microsoft has released security patches, and organizations should prioritize immediate updates and mitigation strategies.
- Proper network segmentation, enabling NLA, and monitoring RDP activity are recommended for defense.
Read More: https://gbhackers.com/new-windows-rdp-vulnerability/