I am wondering whether people would start the disclose volns responsible if they would understand to what level of risk they expose our customers and with them quite a part of the industry by using irresponsible disclosure (called full disclosure as well). Again we had to warn for a publicly knwon vulnerabiltiy. This time RDP and it could lead “only” to a Denial of Service.
Anyway, if there is a need to communicate more, what is going on behind the scenes and why it soemtimes takes so long to issue a Security Update, get in touch with us. We are happy to explain this.
You can find the corresponding Advisory here: http://www.microsoft.com/technet/security/advisory/904797.mspx