Описание
In FreeRDP after 1.1 and before 2.0.0, there is an out-of-bounds read in autodetect_recv_bandwidth_measure_results. A malicious server can extract up to 8 bytes of client memory with a manipulated message by providing a short input and reading the measurement result data. This has been patched in 2.0.0.
Ссылки
- PatchThird Party Advisory
- ExploitThird Party Advisory
- Third Party Advisory
- Mailing ListThird Party Advisory
- Third Party Advisory
- PatchThird Party Advisory
- ExploitThird Party Advisory
- Third Party Advisory
- Mailing ListThird Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Одно из
EPSS
5.5 Medium
CVSS3
5.9 Medium
CVSS3
4.9 Medium
CVSS2
Дефекты
Связанные уязвимости
In FreeRDP after 1.1 and before 2.0.0, there is an out-of-bounds read in autodetect_recv_bandwidth_measure_results. A malicious server can extract up to 8 bytes of client memory with a manipulated message by providing a short input and reading the measurement result data. This has been patched in 2.0.0.
In FreeRDP after 1.1 and before 2.0.0, there is an out-of-bounds read in autodetect_recv_bandwidth_measure_results. A malicious server can extract up to 8 bytes of client memory with a manipulated message by providing a short input and reading the measurement result data. This has been patched in 2.0.0.
In FreeRDP after 1.1 and before 2.0.0, there is an out-of-bounds read ...
Уязвимость функции autodetect_recv_bandwidth_measure_results) RDP-клиента FreeRDP, позволяющая нарушителю раскрыть защищаемую информацию или вызвать отказ в обслуживании
Moderate: freerdp and vinagre security, bug fix, and enhancement update
EPSS
5.5 Medium
CVSS3
5.9 Medium
CVSS3
4.9 Medium
CVSS2