MS15-030: Vulnerability in Remote Desktop protocol could allow denial of service: March 10, 2015

Applies to: Windows Server 2012 R2 DatacenterWindows Server 2012 R2 StandardWindows Server 2012 R2 Essentials More

Summary


This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow denial of service if an attacker creates multiple RDP sessions which fail to properly free objects in memory. By default, RDP is not enabled on any Windows operating system. Systems that do not have RDP enabled are not at risk.

Introduction


Microsoft has released security bulletin MS15-030. To learn more about this security bulletin:

How to obtain help and support for this security update

Help installing updates:
Support for Microsoft Update

Security solutions for IT professionals:
TechNet Security Troubleshooting and Support

Help protect your Windows-based computer from viruses and malware:
Virus Solution and Security Center

Local support according to your country:
International Support

More Information


Known issues and additional information about this security update

The following articles contain additional information about this security update as it relates to individual product versions. The articles may contain known issue information. If this is the case, the known issue is listed under each article link.
  • 3036493 MS15-030: Description of the security update for Remote Desktop protocol: March 10, 2015
    Known issues in security update 3036493:
    • If you uninstall this security update, you may have to restart the computer two times.




      Note We do not recommend that you uninstall any security update.

  • 3035017 MS15-030: Description of the security update for Remote Desktop protocol: March 10, 2015

File information