If you run certain Microsoft legacy systems, the National Security Agency is warning about a specific vulnerability.
According to a US-CERT alert, an RDP (Remote Desktop Protocol) security hole called "BlueKeep" could make certain Windows systems vulnerable to a worm.
Microsoft systems vulnerable to BlueKeep
Here are the versions the NSA says are at risk:
• Windows® XP
• Windows Server® 2003
• Windows® Vista
• Windows Server® 2008
• Windows® 7
• Windows Server® 2008 R2
And these are the patches the advisory recommends "immediately applying" to your operating system:
- Windows XP / Windows Server 2003 – Security Patch KB4500331
- Windows Vista / Windows Server 2008 – Security Patch KB4499180 OR Monthly Rollup KB4499149
- Windows 7 / Windows Server 2008 R2 – Security Patch KB4499175 OR Monthly Rollup KB4499164
For a complete copy of the NSA advisory, click here.