New research using the nmap nse script “” developed by @ea_foundation shows that all Rackspace Windows cloud images are vulnerable by default. On AWS EC2 any existing, unpatched Windows AMIs or EBS images (pre 2012.03.13) that are booted with the AWS Management Console default firewall ruleset are vulnerable as well. Both cloud service providers have taken some steps to mitigate MS12-020, but it is nowhere near enough to protect customers. This is due to the fact that both cloud. service providers, AWS. EC2 and Rackspace have vulnerable by. default security settings.
Source: https://thehackernews.com/2012/04/cloudworm-candidate-ms12-020-poc.html