Today we would like to inform you about a security problem with Windows servers in combination with Plesk.
The security issue known as the "Juicy Potato Exploit" can compromise customer data in Plesk running on a server with the following Windows operating systems: Windows Server 2008 R2, Windows Server 2012, Windows Server 2012R2, Windows Server 2016.
Windows Server 2019 is not affected.
Since this is NOT a Plesk or webtropia.com problem, but a Windows security problem, we cannot troubleshoot it for you. However, both webtropia.com and Plesk attach great importance to the fact that you and your servers are safe and secure.
However, you can currently use a method to protect your server. Under Windows you have to deactivate the d-com support. You can find more detailed instructions on this under the following link: https://support.microsoft.com/en-us/help/825750/how-to-disable-dcom-support-in-windows
Plesk has informed us that a message about the security problem and the current status will shortly be activated directly in the Plesk interface, which should be displayed to the server administrator after logging into Plesk. You will also always find the latest information in the Plesk Help Center. (Support.plesk.com)
Should you have any questions about the security problem, please contact our support or our CRM team gladly available.
Your team from webtropia.com