CVE-2020-16896

Name of the Vulnerable Software and Affected Versions: Remote Desktop Protocol (RDP) (affected versions not specified)

Description: An information disclosure issue exists in Remote Desktop Protocol (RDP) when an attacker connects to the target system using RDP and sends specially crafted requests. This could allow an attacker to obtain information to further compromise the user's system. To exploit this issue, an attacker would need to run a specially crafted application against a server that provides RDP services. The vulnerability is due to insufficient input validation in Remote Desktop Services (RDS) in Windows operating systems, which could allow a remote attacker to gain unauthorized access to protected information.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.