Microsoft Remote Desktop Client Heap-Based Buffer Overflow Vulnerability Allowing Remote Code Execution

A heap-based buffer overflow vulnerability has been identified in Microsoft Remote Desktop Client. This vulnerability allows an unauthorized attacker to execute code remotely over a network. It affects several versions of Windows 10, Windows 11, Windows Server 2022, and Windows Server 2025. The vulnerability arises from a heap-based buffer overflow, which can be exploited when a victim connects to an attacking server using the vulnerable Remote Desktop Client.

Impact

Exploitation of this vulnerability could lead to remote code execution on the affected system.

Reproduction

To reproduce this vulnerability, an attacker must have control of a Remote Desktop Server. When a victim connects to the server using the vulnerable Remote Desktop Client, the attacker can trigger the buffer overflow, leading to remote code execution on the victim's machine.

Remediation

Users can apply the security update provided by Microsoft to address this vulnerability. This security update is available through the Microsoft Update Catalog.