As of two days ago, Microsoft patched a bug that has been affecting their systems for around 15 years, which could potentially allow an attacker to run scripts or take control of PCs running any version of Windows. The problem, is that this vulnerability will remain unpatched for any system running Windows Server 2003.
This vulnerability is critical in relation to any network using Active Directory. This bug is exploitable either locally or from a remote location, and may grant attackers administrator level access to the device. Unfortunately, this cannot be fixed as easily as other known vulnerabilities because it is found in the core of Windows. Microsoft states that the highest threat is to organizations that still use Windows 2003, which will only be supported into mid-July.
Microsoft recommends that all systems get patched, and if admins seek further guidance, they should check out:
https://support.microsoft.com/kb/3000483
Related articles
Business Email Compromise: Top BEC Tactics & How to Protect Against Them
We take a look at Business Email Compromise, including common BEC tactics and what your business can do to protect against them.
FFIEC CAT Sunset: Why the CRI Profile is a Strong Alternative
With the FFIEC CAT sunset approaching, we explore why the CRI Profile is a strong alternative to the CAT for financial institutions!
Dynamics GP to Business Central Migration: Key Insights from our Webinar
In case you missed our webinar on Dynamics GP to Business Central migration, here are 5 expert insights from our ERP specialist, David Laster!