Netlogon Advisory

Microsoft Security Team advises that ‘an elevation of privilege vulnerability exists when an attacker establishes a vulnerable Netlogon secure channel connection to a domain controller, using the Netlogon Remote Protocol (MS-NRPC). An attacker who successfully exploited the vulnerability could run a specially crafted application on a device on the network.’ The Uganda National CERT/CC strongly urges system administrators to IMMEDIATELY apply the security update released by Microsoft. Treat this as urgent due to the active exploits in the wild.