Recently, the Microsoft Security Response Center of accident response Simon Pope, head of the official blog warns that , although not yet observed worm exploits the CVE-2019-0708 vulnerability in high-risk, but that does not mean no problem. There are at least one million networked computer is not patched, vulnerable to attack.
Two weeks before the release of Microsoft's unusual to have terminated support for Windows XP and Windows 2003 security update to fix a flaw that allegedly can quickly spread malicious programs like WannaCry worms .
This vulnerability is high-risk vulnerabilities beginning of the article mentioned, the number CVE-2019-0708, is located in Remote Desktop Services. It affects still supports operating systems such as Windows 7, Windows Server 2008 R2 and Windows Server 2008, without prejudice to the newer operating systems such as Windows 10, Windows 8.1, Windows 8, Windows Server 2019, Windows Server 2016, Windows Server 2012 R2 or Windows Server 2012.
Microsoft said it was not observed evidence of the vulnerability being exploited, but believes the attacker will soon develop exploit code and integrate it into the malicious program.
Microsoft's official Boti to WannaCry, consider the level of threat and vulnerability Wannacry rather, could be exploited by hackers, malware spread to vulnerable computers across the globe. 2017 WannaCry caused hundreds of thousands of computers worldwide suffer serious consequences of infection, but in fact, Microsoft two months before the incident has been released WannaCry exploitation of a vulnerability fixes. Microsoft said that although nearly 60 days to install the update, many users failed to do so, unfortunately ransomware attack.
Official strongly recommends that all systems affected by the vulnerability of the completion of the update as soon as possible.
Reference: Solidot , Errata Security , in the Microsoft Blog