CVE-2018-20175

Опубликовано: 04 янв. 2019

Источник: redhat

CVSS3: 5.3

Описание

rdesktop versions up to and including v1.8.3 contains several Integer Signedness errors that lead to Out-Of-Bounds Reads in the file mcs.c and result in a Denial of Service (segfault).

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 5	rdesktop	Will not fix
Red Hat Enterprise Linux 6	rdesktop	Will not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-119

https://bugzilla.redhat.com/show_bug.cgi?id=1670400rdesktop: Denial of Service in mcs_recv_connect_response and mcs_parse_domain_params

5.3 Medium

CVSS3

Связанные уязвимости

CVE-2018-20175

CVSS3: 7.5

ubuntu

почти 7 лет назад

rdesktop versions up to and including v1.8.3 contains several Integer Signedness errors that lead to Out-Of-Bounds Reads in the file mcs.c and result in a Denial of Service (segfault).

CVE-2018-20175

CVSS3: 7.5

nvd

почти 7 лет назад

rdesktop versions up to and including v1.8.3 contains several Integer Signedness errors that lead to Out-Of-Bounds Reads in the file mcs.c and result in a Denial of Service (segfault).

CVE-2018-20175

CVSS3: 7.5

debian

почти 7 лет назад

rdesktop versions up to and including v1.8.3 contains several Integer ...

GHSA-3v5c-fqm6-hqf5

CVSS3: 7.5

github

больше 3 лет назад

rdesktop versions up to and including v1.8.3 contains several Integer Signedness errors that lead to Out-Of-Bounds Reads in the file mcs.c and result in a Denial of Service (segfault).

BDU:2019-01580

CVSS3: 7.5

fstec

около 7 лет назад

Уязвимость файла RDP-клиента rdesktop, связанная с чтением за пределами границы буфера, позволяющая нарушителю вызывать отказ в обслуживании

5.3 Medium

CVSS3