URGENT! Anyone with Windows Professional Must READ : MS12-020 CRITICAL

Microsoft yesterday released a level 1 critical patch yesterday for the MS12-020 exploit. If you have Windows Professional with or without Remote Desktop enabled, you must immediately apply patch KB2621440 and/or KB2667402.

(see Microsoft Security Bulletin MS12-020 - Critical : Vulnerabilities in Remote Desktop Could Allow Remote Code Execution (2671387) for details)

This is the most serious exploit in a very long time, it allows any programmer the ability to compromise any RDC enabled windows machine. This will launch a wave of worms and viruses across the globe imminently, and leave sensitive corporate, government, and personal computers COMPLETELY OPEN to anyone with a working knowledge of this exploit.

Patch this NOW

 

This also includes all Windows Server operating systems

 

This is part of the set of patches distributed with Windows Update on Tuesday. No need to get over-excited. Everyone who has let Windows Update run its course will have this installed by now.

 

Agree that for individuals and organizations with good security policies, windows updates will be configured to automatically download and install critical patches. But in my experience this is not the case for a very sizable portion of the Windows OS community. Many have automatic update disabled, or set to download but install only on prompt.

Just realize that anyone with remote desktop access enabled (regardless of port) can now be controlled in a matter of seconds by anyone who has working knowledge of this exploit. Get ready for the avalanche of problems that are going to be reported in the media when all these web servers and sensitive government computers get broken into