CVE-2018-8476

Name of the Vulnerable Software and Affected Versions Windows Server versions prior to the fixed version Windows Server 2012 R2 Windows Server 2008 Windows Server 2012 Windows Server 2019 Windows Server 2016 Windows Server 2008 R2 Windows 10 Servers

Description A remote code execution issue exists due to the way the Windows Deployment Services TFTP Server handles objects in memory. This allows remote attackers to execute arbitrary code on the system by sending a specially crafted request. The vulnerability can be exploited by remote attackers, potentially leading to the execution of arbitrary code.

Recommendations For Windows Server 2012 R2, update to a version that includes the fix for this issue. For Windows Server 2008, consider applying a workaround or configuration change to mitigate the risk until a patch is available. For Windows Server 2012, restrict access to the TFTP Server until a patch is available. For Windows Server 2019, Windows Server 2016, Windows Server 2008 R2, and Windows 10 Servers, update to a version that includes the fix for this issue. As a temporary workaround, consider disabling the TFTP Server service until a patch is available.