Description of the security update for the remote code execution vulnerability in Windows XP SP3, Windows Server 2003 SP2, Windows Server 2003 SP2 R2, Windows XP Professional x64 Edition SP2, Windows XP Embedded SP3, Windows Embedded POSReady 2009, and Windows Embedded Standard 2009

Applies to: Microsoft Windows XP Service Pack 3Microsoft Windows Server 2003 Service Pack 2Microsoft Windows XP Professional x64 Edition Service Pack 2


A remote code execution vulnerability exists in Remote Desktop Services in the affected Windows platforms.

To learn more about this release, go to 4500705. To learn more about the vulnerability, go to CVE-2019-0708.


How to get this update

Microsoft Update Catalog 

To get the stand-alone package for this update, go to the Microsoft Update Catalog website


Learn about the terminology that Microsoft uses to describe software updates.

File Information

File information
The English (United States) version of this software update installs files that have the attributes that are listed in the following tables.

Windows XP file information

Windows Server 2003 file information