Description

The RDP service has enabled the RC4 cipher suite considered outdated when is used in conjunction with TLS/SSL.

Impact

Obtain information derived from the encrypted channel.

Recommendation

Disable the RC4 cipher suite on the server.

Threat

Anonymous attacker in the intranet.

Expected Remediation Time

⏱️ 30 minutes.

Requirements

Fixes