CVE-2017-0176漏洞信息： Microsoft Security Update for Windows XP and Windows Server 2003 Missing - June 2017 (KB4022747)

A remote code execution vulnerability exists in Remote Desktop Protocol (RDP) if the RDP server has Smart Card authentication enabled.

QID Detection Logic (Authenticated):
Operating Systems: Windows XP Embedded, Windows Server 2003
This QID checks for the file version of %windir%\System32\Gpkcsp.dll less than 5.1.2600.7264

An attacker who successfully exploited this vulnerability could execute code on the target system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

Customers are advised to refer to KB4022747 for more information pertaining to this vulnerability.

Patch:
Following are links for downloading patches to fix the vulnerabilities:

KB4022747