Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2017-2836

Опубликовано: 24 июл. 2017
Источник: redhat
CVSS3: 5.3

Описание

An exploitable denial of service vulnerability exists within the reading of proprietary server certificates in FreeRDP 2.0.0-beta1+android11. A specially crafted challenge packet can cause the program termination leading to a denial of service condition. An attacker can compromise the server or use man in the middle to trigger this vulnerability.

Отчет

Red Hat Product Security has rated this issue as having Low security impact. This issue is not currently planned to be addressed in future updates. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6freerdpWill not fix
Red Hat Enterprise Linux 7freerdpWill not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low
Дефект:
CWE-190->CWE-125
https://bugzilla.redhat.com/show_bug.cgi?id=1475240freerdp: Rdp Client Read Server Proprietary Certificate Denial of Service

5.3 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2017-2836

CVSS3: 5.9
ubuntu
почти 8 лет назад

An exploitable denial of service vulnerability exists within the reading of proprietary server certificates in FreeRDP 2.0.0-beta1+android11. A specially crafted challenge packet can cause the program termination leading to a denial of service condition. An attacker can compromise the server or use man in the middle to trigger this vulnerability.

nvd логотип

CVE-2017-2836

CVSS3: 5.9
nvd
почти 8 лет назад

An exploitable denial of service vulnerability exists within the reading of proprietary server certificates in FreeRDP 2.0.0-beta1+android11. A specially crafted challenge packet can cause the program termination leading to a denial of service condition. An attacker can compromise the server or use man in the middle to trigger this vulnerability.

debian логотип

CVE-2017-2836

CVSS3: 5.9
debian
почти 8 лет назад

An exploitable denial of service vulnerability exists within the readi ...

github логотип

GHSA-wcfr-wfm2-2rjm

CVSS3: 5.9
github
больше 3 лет назад

An exploitable denial of service vulnerability exists within the reading of proprietary server certificates in FreeRDP 2.0.0-beta1+android11. A specially crafted challenge packet can cause the program termination leading to a denial of service condition. An attacker can compromise the server or use man in the middle to trigger this vulnerability.

suse-cvrf логотип

openSUSE-SU-2017:2332-1

suse-cvrf
больше 8 лет назад

Security update for freerdp

5.3 Medium

CVSS3