Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:DSA-1573-1
HistoryMay 11, 2008 - 12:00 a.m.

rdesktop - several vulnerabilities

2008-05-1100:00:00
Google
osv.dev
5

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.959 High

EPSS

Percentile

99.2%

JSON

Several remote vulnerabilities have been discovered in rdesktop, a
Remote Desktop Protocol client. The Common Vulnerabilities and
Exposures project identifies the following problems:

  • CVE-2008-1801
    Remote exploitation of an integer underflow vulnerability allows
    attackers to execute arbitrary code with the privileges of the
    logged-in user.
  • CVE-2008-1802
    Remote exploitation of a BSS overflow vulnerability allows
    attackers to execute arbitrary code with the privileges of the
    logged-in user.
  • CVE-2008-1803
    Remote exploitation of an integer signedness vulnerability allows
    attackers to execute arbitrary code with the privileges of the
    logged-in user.

For the stable distribution (etch), these problems have been fixed in
version 1.5.0-1etch2.

For the unstable distribution (sid), these problems have been fixed in
version 1.5.0-4+cvs20071006.

We recommend that you upgrade your rdesktop package.

CPENameOperatorVersion
rdesktopeq1.5.0-1
rdesktopeq1.5.0-1etch1

Related

nessus 20
openvas 27
ubuntu 1
fedora 3
securityvulns 4
gentoo 1
debian 2
seebug 1
oraclelinux 2
redhat 3
centos 2
ubuntucve 3
debiancve 3
prion 3
cve 3
slackware 1
packetstorm 2
checkpoint_advisories 1
suse 1
nessus
nessus
Fedora 9 : rdesktop-1.6.0-1.fc9 (2008-3886)
2008-05-16 00:00:00
GLSA-200806-04 : rdesktop: Multiple vulnerabilities
2008-06-16 00:00:00
openSUSE 10 Security Update : rdesktop (rdesktop-5271)
2008-08-15 00:00:00
openvas
openvas
Fedora Update for rdesktop FEDORA-2008-3917
2009-02-17 00:00:00
Gentoo Security Advisory GLSA 200806-04 (rdesktop)
2008-09-24 00:00:00
Ubuntu Update for rdesktop vulnerabilities USN-646-1
2009-03-23 00:00:00
ubuntu
ubuntu
rdesktop vulnerabilities
2008-09-18 00:00:00
fedora
fedora
[SECURITY] Fedora 8 Update: rdesktop-1.6.0-1.fc8
2008-05-14 22:12:39
[SECURITY] Fedora 7 Update: rdesktop-1.6.0-1.fc7
2008-05-14 22:15:23
[SECURITY] Fedora 9 Update: rdesktop-1.6.0-1.fc9
2008-05-14 22:08:33
securityvulns
securityvulns
rdesktop multiple security vulnerabilities
2008-05-08 00:00:00
iDefense Security Advisory 05.07.08: Multiple Vendor rdesktop iso_recv_msg() Integer Underflow Vulnerability
2008-05-08 00:00:00
iDefense Security Advisory 05.07.08: Multiple Vendor rdesktop channel_process() Integer Signedness Vulnerability
2008-05-08 00:00:00
gentoo
gentoo
rdesktop: Multiple vulnerabilities
2008-06-14 00:00:00
debian
debian
[SECURITY] [DSA 1573-1] New php5 packages fix several vulnerabilities
2008-05-11 15:16:04
[SECURITY] [DSA 1573-1] New rdesktop packages fix several vulnerabilities
2008-05-12 08:54:07
seebug
seebug
rdesktop倚δΈͺηΌ“ε†²εŒΊζΊ’ε‡ΊζΌζ΄ž
2008-05-10 00:00:00
oraclelinux
oraclelinux
rdesktop security update
2008-07-24 00:00:00
rdesktop security and bug fix update
2008-08-01 00:00:00
redhat
redhat
(RHSA-2008:0575) Moderate: rdesktop security update
2008-07-24 00:00:00
(RHSA-2008:0576) Moderate: rdesktop security update
2008-07-24 00:00:00
(RHSA-2008:0725) Moderate: rdesktop security and bug fix update
2008-04-16 00:00:00
centos
centos
rdesktop security update
2008-07-24 19:41:48
rdesktop security update
2008-07-24 22:16:13
ubuntucve
ubuntucve
CVE-2008-1801
2008-05-12 00:00:00
CVE-2008-1803
2008-05-12 00:00:00
CVE-2008-1802
2008-05-12 00:00:00
debiancve
debiancve
CVE-2008-1801
2008-05-12 16:20:00
CVE-2008-1803
2008-05-12 22:20:00
CVE-2008-1802
2008-05-12 16:20:00
prion
prion
Integer overflow
2008-05-12 22:20:00
Integer overflow
2008-05-12 16:20:00
Buffer overflow
2008-05-12 16:20:00
cve
cve
CVE-2008-1803
2008-05-12 22:20:00
CVE-2008-1801
2008-05-12 16:20:00
CVE-2008-1802
2008-05-12 16:20:00
slackware
slackware
[slackware-security] rdesktop
2008-05-28 03:54:58
packetstorm
packetstorm
rdesktop-underflow.txt
2008-05-09 00:00:00
rdesktoppdu-overflow.txt
2008-05-12 00:00:00
checkpoint_advisories
checkpoint_advisories
RDesktop process_redirect_pdu BSS Overflow Buffer Overflow - Ver2 (CVE-2008-1802)
2014-12-28 00:00:00
suse
suse
remote code execution in openwsman
2008-08-14 18:02:43

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.959 High

EPSS

Percentile

99.2%

JSON
Related for OSV:DSA-1573-1
nessus20openvas27ubuntu1fedora3securityvulns4gentoo1debian2seebug1oraclelinux2redhat3centos2ubuntucve3debiancve3prion3cve3slackware1packetstorm2checkpoint_advisories1suse1