Volerion logoVolerion
Volerion logoVolerion

Microsoft Remote Desktop Client Heap-Based Buffer Overflow Vulnerability Allowing Remote Code Execution

Vulnerability

A heap-based buffer overflow vulnerability has been identified in the Remote Desktop Client. This vulnerability allows an unauthorized attacker to execute code remotely over a network. The issue arises when a victim connects to a compromised Remote Desktop Server using the vulnerable client.

Impact

Exploitation of this vulnerability could lead to remote code execution on the affected system.

Reproduction

To reproduce this vulnerability, an attacker must control a Remote Desktop Server and exploit the buffer overflow when a victim connects to the server using the vulnerable Remote Desktop Client.

Remediation

Users can download the security update for the Remote Desktop Client for Windows Desktop from the Microsoft Update Catalog. Security updates for various Windows versions and editions are also available through the Microsoft Update Catalog.

Added: Jun 9, 2026, 7:33 PM
Updated: Jun 9, 2026, 7:33 PM

Vulnerability Rating

Custom Algorithm
spread
0.0
impact
7.5
exploitability
6.0
remediation
0.0
relevance
9.4
threat
1.6
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.