Описание
Integer signedness error in the xrealloc function (rdesktop.c) in RDesktop 1.5.0 allows remote attackers to execute arbitrary code via unknown parameters that trigger a heap-based overflow. NOTE: the role of the channel_process function was not specified by the original researcher.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 1.4.1-1.1ubuntu0.6.06.1 |
| devel | not-affected | |
| feisty | released | 1.5.0-1ubuntu1.1 |
| gutsy | released | 1.5.0-2ubuntu0.1 |
| hardy | released | 1.5.0-3+cvs20071006ubuntu0.1 |
| upstream | released | 1.5.0-4+cvs20071006 |
Показывать по
EPSS
9.3 Critical
CVSS2
Связанные уязвимости
Integer signedness error in the xrealloc function (rdesktop.c) in RDesktop 1.5.0 allows remote attackers to execute arbitrary code via unknown parameters that trigger a heap-based overflow. NOTE: the role of the channel_process function was not specified by the original researcher.
Integer signedness error in the xrealloc function (rdesktop.c) in RDesktop 1.5.0 allows remote attackers to execute arbitrary code via unknown parameters that trigger a heap-based overflow. NOTE: the role of the channel_process function was not specified by the original researcher.
Integer signedness error in the xrealloc function (rdesktop.c) in RDes ...
Integer signedness error in the xrealloc function (rdesktop.c) in RDesktop 1.5.0 allows remote attackers to execute arbitrary code via unknown parameters that trigger a heap-based overflow. NOTE: the role of the channel_process function was not specified by the original researcher.
EPSS
9.3 Critical
CVSS2