Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2017-2838

Опубликовано: 24 апр. 2018
Источник: debian
EPSS Низкий

Описание

An exploitable denial of service vulnerability exists within the handling of challenge packets in FreeRDP 2.0.0-beta1+android11. A specially crafted challenge packet can cause the program termination leading to a denial of service condition. An attacker can compromise the server or use man in the middle to trigger this vulnerability.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
freerdpfixed1.1.0~git20140921.1.440916e+dfsg1-14package

Примечания

  • https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0340

  • http://blog.talosintelligence.com/2017/07/vulnerbility-spotlight-freerdp-multiple.html

  • https://github.com/FreeRDP/FreeRDP/commit/03ab68318966c3a22935a02838daaea7b7fbe96c (1.1)

EPSS

Процентиль: 70%
0.00622
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2017-2838

CVSS3: 5.9
ubuntu
почти 8 лет назад

An exploitable denial of service vulnerability exists within the handling of challenge packets in FreeRDP 2.0.0-beta1+android11. A specially crafted challenge packet can cause the program termination leading to a denial of service condition. An attacker can compromise the server or use man in the middle to trigger this vulnerability.

redhat логотип

CVE-2017-2838

CVSS3: 5.3
redhat
больше 8 лет назад

An exploitable denial of service vulnerability exists within the handling of challenge packets in FreeRDP 2.0.0-beta1+android11. A specially crafted challenge packet can cause the program termination leading to a denial of service condition. An attacker can compromise the server or use man in the middle to trigger this vulnerability.

nvd логотип

CVE-2017-2838

CVSS3: 5.9
nvd
почти 8 лет назад

An exploitable denial of service vulnerability exists within the handling of challenge packets in FreeRDP 2.0.0-beta1+android11. A specially crafted challenge packet can cause the program termination leading to a denial of service condition. An attacker can compromise the server or use man in the middle to trigger this vulnerability.

github логотип

GHSA-mgp7-ggv4-38hf

CVSS3: 5.9
github
больше 3 лет назад

An exploitable denial of service vulnerability exists within the handling of challenge packets in FreeRDP 2.0.0-beta1+android11. A specially crafted challenge packet can cause the program termination leading to a denial of service condition. An attacker can compromise the server or use man in the middle to trigger this vulnerability.

suse-cvrf логотип

openSUSE-SU-2017:2332-1

suse-cvrf
больше 8 лет назад

Security update for freerdp

EPSS

Процентиль: 70%
0.00622
Низкий