Microsoft: >> Windows Terminal Services Using Rdp Security Vulnerabilities
Microsoft Terminal Server using Remote Desktop Protocol (RDP) 5.2 stores an RSA private key in mstlsapi.dll and uses it to sign a certificate, which allows remote attackers to spoof public keys of legitimate servers and conduct man-in-the-middle attacks.
CVSS Score
7.4
EPSS Score
0.06
Published
2005-06-01