CVE-2012-2526

Опубликовано: 15 авг. 2012

Источник: nvd

CVSS2: 9.3

EPSS Средний

Описание

The Remote Desktop Protocol (RDP) implementation in Microsoft Windows XP SP3 does not properly process packets in memory, which allows remote attackers to execute arbitrary code by sending crafted RDP packets triggering access to a deleted object, aka "Remote Desktop Protocol Vulnerability."

Ссылки

http://www.us-cert.gov/cas/techalerts/TA12-227A.html
Third Party Advisory
US Government Resource
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-053
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15650
http://www.us-cert.gov/cas/techalerts/TA12-227A.html
Third Party Advisory
US Government Resource
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-053
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15650

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:microsoft:windows_xp:*:sp3:*:*:*:*:*:*

EPSS

Процентиль: 98%

0.57525

Средний

9.3 Critical

CVSS2

Дефекты

CWE-94

Связанные уязвимости

GHSA-q5x5-pf74-vqx9

github

больше 3 лет назад