1 Reply Latest reply on May 16, 2018 1:02 PM by ddenning

    CredSSP updates for CVE-2018-0886

    kaanfu Rookie

      https://support.microsoft.com/en-us/help/4093492/credssp-updates-for-cve-2018-0886-march-13-2018 article mentions that may patches change the default setting from Vulnerable to Mitigated.


      We patched some of our servers and did not notice any RDP issues when we tried to connect from unpatched server to patched server?

      We also did not find registry value on the patched server? how does may patch change the default setting from Vulnerable to Mitigated?

        • 1. Re: CredSSP updates for CVE-2018-0886
          ddenning SupportEmployee



          Thank you for posting your question.


          While we handle the detection and deployment logic for updates, we do not have any control over their actual functionality since we use what we obtain directly from the vendors. Therefore, to obtain more information on how this update actually functions, you will have to check with Microsoft as the only information we have is what Microsoft has publicly posted as is referenced in the url you mentioned.