Skip to content

H3-2020-0001

Remote Desktop Username Disclosure

Category SECURITY_MISCONFIGURATION
Base Score 2.0

Description

An insecure RDP security layer (Native RDP or SSL) is enabled.

Impact

Attackers can discover usernames, domain names, and host information, and possibly carry out man-in-the-middle attacks.

References