Exploitable PoC Released for CVE-2024-38077: 0-Click RCE Threatens All Windows Servers
Security researchers Ver, Lewis Lee, and Zhiniang Peng have disclosed a critical vulnerability in all versions of Windows Server from 2000 to 2025, identified as CVE-2024-38077 with a CVSS score of 9.8. This vulnerability, named "MadLicense," allows for pre-authentication remote code execution (RCE) without user interaction. The Windows Remote Desktop Licensing Service (RDL), which is widely used and often exposed directly to the internet, is affected by this issue. The flaw is due to a heap overflow in the CDataCoding::DecodeData procedure, which can be exploited to execute arbitrary code. A proof-of-concept exploit has been demonstrated on Windows Server 2025 with a high success rate and can be modified for stealthier attacks on older server versions. Microsoft has released a patch for this vulnerability in its July security update. A PoC exploit code has also surfaced on Github, though its authenticity is unconfirmed. Organizations are urged to update their Windows Server systems immediately and disable any unnecessary services to mitigate risks. CVEs: CVE-2024-38077 [View Article](https://securityonline.info/exploitable-poc-released-for-cve-2024-38077-0-click-rce-threatens-all-windows-servers/)