Wormable Windows HTTP Vulnerability Affects WinRM Servers

A wormable vulnerability in the HTTP Protocol Stack of the Windows IIS server can also be used to attack unpatched Windows 10 and Server systems publicly exposing the WinRM (Windows Remote Management) service.However, the vulnerability only affects versions 2004 and 20H2 of Windows 10 and Windows Server.Microsoft has recommended patching all affected servers because the vulnerability could allow the attackers to remotely execute the arbitrary code.Read more...