New Windows Update May Break RDP
Posted by Joe S on 10 May 2018 12:37 PM
Earlier this week, Microsoft issued a patch for remote code execution vulnerability in any application that uses CredSSP - this impacts Remote Desktop Connection/RDP. The vulnerability has been assigned CVE-2018-0886. You can read more about it on this Microsoft blog article: https://blogs.technet.microsoft.com/askpfeplat/2018/05/07/credssp-rdp-and-raven/
All clients are urged to run Windows updates on their servers BEFORE running the update on their local devices. If the update is run client-side before being applied to the server, a CredSSP error will be generated and access will be denied. To work around this, VPS clients will need to login to cloudserverpanel.com and access their servers using the HTML VNC client to run the updates.
For clients whose dedicated servers are inaccessible, you can temporarily remove the patch requirement from connections by changing group policies on your local computer:
Computer Configuration -> Administrative Templates -> System -> Credentials Delegation and change the registry value from 0 or 1 to 3. After you have gained access to your server and the updates have run, don't forget to set this back to 1 or 0, once ALL clients and servers have been patched. See the blog post mentioned earlier in this notice for information.
As always, Turnkey Internet support staff is here to assist you with any issues you have. If you have any questions regarding this notice, feel free to reach out to us through a support ticket, live chat, or by phone.