Issue:
Microsoft system updates cause the security check to sometimes prompt "Microsoft Windows CredSSP Remote Code Execution Vulnerability (CVE-2018-0886)" after deploying ZWCAD software. System reasons mainly cause this. Here are some solutions to such problems.
Cause:
Credential Security Support Provider Protocol (CredSSP) remote execution exists in some Microsoft Windows Server versions.
A remote code execution vulnerability exists in the Credential Security Support Provider protocol (CredSSP). An attacker who successfully exploited this vulnerability could relay user credentials and use them to execute code on the target system.
CredSSP is an authentication provider that processes authentication requests for other applications; any application that depends on CredSSP for authentication may be vulnerable to this type of attack.
Solution:
- Microsoft has released a security advisory (CVE-2018-0886) and corresponding patches. Please click the link https://msrc.microsoft.com/update-guide/en-us/advisory/CVE-2018-0886 to download.
- Find the server version corresponding to yours and directly download the patch in msu format. Double-click to run it to install and update it directly.
