Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2017-2837

Опубликовано: 24 апр. 2018
Источник: debian

Описание

An exploitable denial of service vulnerability exists within the handling of security data in FreeRDP 2.0.0-beta1+android11. A specially crafted challenge packet can cause the program termination leading to a denial of service condition. An attacker can compromise the server or use man in the middle to trigger this vulnerability.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
freerdpfixed1.1.0~git20140921.1.440916e+dfsg1-14package

Примечания

  • https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0339

  • http://blog.talosintelligence.com/2017/07/vulnerbility-spotlight-freerdp-multiple.html

  • https://github.com/FreeRDP/FreeRDP/commit/03ab68318966c3a22935a02838daaea7b7fbe96c (1.1)

Связанные уязвимости

ubuntu логотип

CVE-2017-2837

CVSS3: 5.9
ubuntu
почти 8 лет назад

An exploitable denial of service vulnerability exists within the handling of security data in FreeRDP 2.0.0-beta1+android11. A specially crafted challenge packet can cause the program termination leading to a denial of service condition. An attacker can compromise the server or use man in the middle to trigger this vulnerability.

redhat логотип

CVE-2017-2837

CVSS3: 5.3
redhat
больше 8 лет назад

An exploitable denial of service vulnerability exists within the handling of security data in FreeRDP 2.0.0-beta1+android11. A specially crafted challenge packet can cause the program termination leading to a denial of service condition. An attacker can compromise the server or use man in the middle to trigger this vulnerability.

nvd логотип

CVE-2017-2837

CVSS3: 5.9
nvd
почти 8 лет назад

An exploitable denial of service vulnerability exists within the handling of security data in FreeRDP 2.0.0-beta1+android11. A specially crafted challenge packet can cause the program termination leading to a denial of service condition. An attacker can compromise the server or use man in the middle to trigger this vulnerability.

github логотип

GHSA-p882-vv46-4qp2

CVSS3: 5.9
github
больше 3 лет назад

An exploitable denial of service vulnerability exists within the handling of security data in FreeRDP 2.0.0-beta1+android11. A specially crafted challenge packet can cause the program termination leading to a denial of service condition. An attacker can compromise the server or use man in the middle to trigger this vulnerability.

suse-cvrf логотип

openSUSE-SU-2017:2332-1

suse-cvrf
больше 8 лет назад

Security update for freerdp