‘Wormable’ bug could cause another WannaCry

Microsoft has released fixes for a vulnerability, CVE-2019-0708

Microsoft has discovered a vulnerability, CVE-2019-0708, affecting older versions of Windows, including Windows 7, Windows Server 2008 R2 and Windows Server 2008. The vulnerability requires no user interaction, and is pre-authentications, thus the vulnerability is dubbed as “wormable”.

“Meaning that any future malware that exploits this vulnerability could propagate from vulnerable computer to vulnerable computer in a similar way as the WannaCry malware spread across the globe in 2017,” wrote Simon Pope, director of incident response for the Microsoft Security Response Center.

“While we have observed no exploitation of this vulnerability, it is highly likely that malicious actors will write an exploit for this vulnerability and incorporate it into their malware,” Pope added.

It is important that the affected systems are patched as soon as possible thus Microsoft has provided a security update for all customers. Patches have also been made available for versions of Windows XP and Windows 2003.

Allan Liska, senior solutions architect for Recorded Future said:

“CVE-2019-0708 should be the highest priority patching because, in addition to the wormable capabilities in this exploit, many modern ransomware variants, such as Dhara, Robbinhood, and CrySIS, often use vulnerable RDP servers to gain access to victim networks.

Pope commented:

“Microsoft invests heavily in strengthening the security of its products.”

PrivSec Conferences will bring together leading speakers and experts from privacy and security to deliver compelling content via solo presentations, panel discussions, debates, roundtables and workshops.

For more information on upcoming events, visit the website.

We have been awarded the number 1 GDPR Blog in 2019 by Feedspot.

Privacy Culture: Data Privacy and Information Security Consulting, Culture & Behaviour, Training, and GDPR maturity, covered. https://www.privacyculture.com/