| CVE Number | Vulnerability | Product | Severity | Date |
|---|---|---|---|---|
| CVE-2022-41044 | Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability | Windows 7 | Critical | 09-12-2022 |
Technical Information
A Remote Code Execution can be exploited by an unauthenticated attacker by sending a specially crafted connection request to an RAS server. An attacker who successfully exploited the vulnerability could execute arbitrary code on the host machine in the logged-on user’s context.
Further information on this vulnerability is available at : CVE-2022-41044
Affected Software
Windows 7 for 32-bit Systems Service Pack 1Windows 7 for x64-based Systems Service Pack 1
Windows Server 2008 for 32-bit Systems Service Pack 2
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)
Windows Server 2008 for x64-based Systems Service Pack 2
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)