BlueKeep Ticking bomb

Bluekeep or also called CVE-2019-0708 is a vulnerability that related to critical remote code execution bug which found in older and legacy version of Windows such as Windows 7 and older. The vulnerabilities could give the attacker to gain complete control access and give permission to install any malicious program and modify any data inside the Operating System.

As a result, the vulnerabilities will not ask the attacker to be authenticated in order to exploit the Operating System. Due to that, Microsoft has warned all their user to update their Windows Operating System where it will be a recommendation against the vulnerability.

Jake Olcott, vice president at BitSight, have said that

It’s surprising that organizations haven’t been more efficient and diligent in patching this vulnerability, particularly given the ominous nature of the warning from both Microsoft and the NSA

Luis Grangeia, BitSight senior security researcher have told

One million potential beachheads into internal networks when attempting to quantify the total systems at risk, even if there is no other system running Remote Desktop Protocol behind the firewall

Source: CVE-2019-0708 PoC Exploit on Windows Server 2008 R2 x64 (Youtube)

Source: A devastating exploit using ‘ticking-bomb’ BlueKeep is “only weeks away”

Author: Wan Ariff

He brings with him more than 2 years of working experience in Information Security filed which specializing in Penetration Testing and Digital Forensic. His passion is more to IT Security

Leave a Reply

Your email address will not be published. Required fields are marked *