9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
8.1 High
AI Score
Confidence
Low
0.905 High
EPSS
Percentile
98.8%
Heap-based buffer overflow in Microsoft Remote Desktop Connection (formerly Terminal Services Client) running RDP 5.0 through 6.1 on Windows, and Remote Desktop Connection Client for Mac 2.0, allows remote attackers to execute arbitrary code via unspecified parameters, aka “Remote Desktop Connection Heap Overflow Vulnerability.”
secunia.com/advisories/36229
www.securitytracker.com/id?1022709
www.us-cert.gov/cas/techalerts/TA09-223A.html
www.vupen.com/english/advisories/2009/2238
docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-044
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5693