March update from Microsoft warns of remote code execution flaw that affects CredSSP Attackers can use a protocol bug in Windows RDP to steal session authentication and take over a network domain.