Activity alert to make public aware of the vulnerability named BlueKeep existing in several versions of Windows
- Windows Vista
- Windows XP
- Windows 7
- Windows Server 2003
- Windows Server 2003 R2
- Windows Server 2008
- Windows Server 2008 R2
This allows remote code execution and allow therefore attackers to send specially crafted packets which will further allow account creation, access to data (with read and modify rights) and deletion rights.
Threat grows as no user interaction is needed, which makes detection by victim very unlikely.
Mitigation actions include patch installation, disable unnecessary services enable network level authentication and blocking transmission protocol.