MS12-036 Bulletin Details
Bulletin ID MS12-036
Title Vulnerability in Remote Desktop Could Allow Remote Code Execution (2685939)
Summary This security update resolves a privately reported vulnerability in the Remote Desktop Protocol. The vulnerability could allow remote code execution if an attacker sends a sequence of specially crafted RDP packets to an affected system. By default, the Remote Desktop Protocol (RDP) is not enabled on any Windows operating system. Systems that do not have RDP enabled are not at risk.
Knowledgebase 2685939

List of Patches

S.No Patch Name Severity
1WindowsServer2003-KB2685939-x86-ENU.exeCritical
2WindowsXP-SP2-KB2685939-x64-ENU.exeModerate
3Windows6.0-SP2-KB2685939-x86.msuModerate
4WindowsServer2003-KB2685939-x64-ENU.exeCritical
5Windows6.0-2008--KB2685939-x86.msuCritical
6Windows6.0-2008--KB2685939-x64.msuCritical
7Windows6.0-SP2-KB2685939-x64.msuModerate
8Windows6.1-KB2685939-x86.msuModerate
9Windows6.1-SP1-KB2685939-x86.msuCritical
10Windows6.1-KB2685939-x64.msuModerate
11Windows6.1-SP1-KB2685939-x64.msuCritical
12Windows6.1-2008-R2-KB2685939-x64.msuCritical
13Windows6.1-2008-R2-SP1-KB2685939-x64.msuCritical

Disclaimer: This webpage is intended to provide you information about patch announcement for certain specific software products. The information is provided "As Is" without warranty of any kind. The links provided point to pages on the vendors websites. You can get more information by clicking the links to visit the relevant pages on the vendors website.