CVE-2018-8797

Опубликовано: 05 фев. 2019

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 7.5

CVSS3: 9.8

Описание

rdesktop versions up to and including v1.8.3 contain a Heap-Based Buffer Overflow in function process_plane() that results in a memory corruption and probably even a remote code execution.

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needed
cosmic	ignored	end of life
devel	not-affected	1.8.4-1
disco	not-affected	1.8.4-1
eoan	not-affected	1.8.4-1
esm-apps/bionic	needed
esm-apps/focal	not-affected	1.8.4-1
esm-apps/jammy	not-affected	1.8.4-1
esm-apps/noble	not-affected	1.8.4-1
esm-apps/xenial	needed

Показывать по

Ссылки на источники

EPSS

Процентиль: 91%

0.06669

Низкий

7.5 High

CVSS2

9.8 Critical

CVSS3

Связанные уязвимости

CVE-2018-8797

CVSS3: 7.5

redhat

около 7 лет назад

rdesktop versions up to and including v1.8.3 contain a Heap-Based Buffer Overflow in function process_plane() that results in a memory corruption and probably even a remote code execution.

CVE-2018-8797

CVSS3: 9.8

nvd

около 7 лет назад

rdesktop versions up to and including v1.8.3 contain a Heap-Based Buffer Overflow in function process_plane() that results in a memory corruption and probably even a remote code execution.

CVE-2018-8797

CVSS3: 9.8

debian

около 7 лет назад

rdesktop versions up to and including v1.8.3 contain a Heap-Based Buff ...

GHSA-gpw5-2pf9-cjvc

CVSS3: 9.8

github

больше 3 лет назад

rdesktop versions up to and including v1.8.3 contain a Heap-Based Buffer Overflow in function process_plane() that results in a memory corruption and probably even a remote code execution.

BDU:2019-00854

CVSS3: 9.8

fstec

около 7 лет назад

Уязвимость реализации функции «process_plane» RDP-клиента rdesktop, связанная с переполнением буфера, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 91%

0.06669

Низкий

7.5 High

CVSS2

9.8 Critical

CVSS3

CVE-2018-8797

Описание

Пакет rdesktop

Ссылки на источники

Связанные уязвимости