CVE-2020-16863

Name of the Vulnerable Software and Affected Versions: Windows Remote Desktop Service (affected versions not specified)

Description: A denial of service issue exists due to insufficient input validation in the Windows Remote Desktop Service. This can be exploited by a remote attacker using a specially crafted application to cause the service to stop responding. The attacker must connect to the target system using RDP and send specially crafted requests to exploit this issue.

Recommendations: To resolve the issue, apply the update that corrects how Remote Desktop Service handles connection requests. As a temporary workaround, consider restricting access to the Remote Desktop Service to minimize the risk of exploitation. Avoid using specially crafted requests in the RDP connection until the issue is resolved.