| Fixing the Microsoft OS vulnerabilities CVE-2019-1181 and CVE-2019-1182 |
Problem
On August 14, 2019, two remote code execution vulnerabilities (CVE-2019-1181 and CVE-2019-1182) were detected in Windows Remote Desktop Services (RDS). These vulnerabilities may lead to wormable attacks like WannaCry and have been rated as Critical by Microsoft. Any attacker who successfully exploits this vulnerability could pose a huge threat by executing execute arbitrary code on the target system.
Cause
This is an issue with the Microsoft OS.
Solution
Install the latest Microsoft patch package by performing the following:
Step 1: Determine whether to install the latest patch package:
Press the Win and R keys at the same time to display the Run window, enter winver, then click OK to view the system version and OS Build, as shown in the following figure.
- When the system version is displayed as "1703", apply the patch KB4512507 if the OS Build is earlier than 15063.1988. You do not need to apply the update if the OS Build is 15063.1988 or later.
- When the system version is displayed as "1709", apply the patch KB4512516 if the OS Build is earlier than 16299.1331. You do not need to apply the update if the OS Build is 16299.1331 or later.
- When the system version is displayed as "1803", apply the patch KB4512501 if the OS Build is earlier than 17134.950. You do not need to apply the update if the OS Build is 17134.950 or later.
- When the system version is displayed as "1809", apply the patch KB4511553 if the OS Build is earlier than 17763.678. You do not need to apply the update if the OS Build is 17763.678 or later.
- When the system version is displayed as "1903", apply the patch KB4512508 if the OS Build is earlier than 18362.295. You do not need to apply the update if the OS Build is 18362.295 or later.
Step 2: Apply the latest version of patch:
Method 1: Download and install the latest version of the patch package
Download the patch package:
1. If the system version is 1703, download the patch package from the following web page:
http://www.catalog.update.microsoft.com/Search.aspx?q=KB4512507
2. If the system version is 1709, download the patch package from the following web page:
http://www.catalog.update.microsoft.com/Search.aspx?q=KB4512516
3. If the system version is 1803, download the patch package from the following web page:
http://www.catalog.update.microsoft.com/Search.aspx?q=KB4512501
4. If the system version is 1809, download the patch package from the following web page:
http://www.catalog.update.microsoft.com/Search.aspx?q=KB4511553
5. If the system version is 1903, download the patch package from the following web page:
http://www.catalog.update.microsoft.com/Search.aspx?q=KB4512508
Note: You are advised to check the OS name and system type before downloading a patch package by performing the following: Enter the Win and R keys at the same time to display the Run window, enter msinfo32, then click OK to view the highlighted information, as shown in the following figure.
In this case, download the patch (Windows 10 and x64) which is circled in red, as shown in the following figure.
Install the patch package:
- Double-click the downloaded patch package and your device will search for updates. Confirm that you want to apply the update program.
- The installation will begin when the search for updates is completed.
- Click Restart Now when the installation is completed.
- The system will configure the update when it is restarting. When the configuration is completed, your device will automatically restart and then enter the system. Click OK.
Method 2: Update the system
Click the Windows icon in the lower left corner of the screen and then click the Settings icon, go to Update & Security > Windows Update, click Check for updates, then click Update Now if there are available updates. Restart your device when the update is completed, repeat the preceding steps to check for updates again, and the message reading "You're up to date" will be displayed.
