RDL vulnerability in Microsoft Server closed – CVE-2024-38077

On 9th August 2024, a vulnerability was published in the ‘Remote Desktop Licensing’ role service that allows unauthenticated attackers to remotely execute arbitrary code in the context of the service using a buffer overflow. Microsoft closed the vulnerability on Patchday July 2024 and rated the vulnerability as ‘high’ (CVSS score 9.8), but considers exploitation to […]