Lucene search
K

461 matches found

Qualys Blog
Qualys Blog
added 2019/09/10 6:0 p.m.169 views

September Patch Tuesday – 79 Vulns, 17 Critical, Remote Desktop Client, SharePoint, Exploited PrivEsc

This month’s Microsoft Patch Tuesday addresses 79 vulnerabilities with 17 of them labeled as Critical. Of the 17 Critical vulns, 8 are for scripting engines and browsers, 4 are for the Remote Desktop Client, and 3 are for SharePoint. In addition, Microsoft has again patched a critical vulnerabili...

9.3CVSS0.5AI score0.19254EPSS
Exploits3
Microsoft CVE
Microsoft CVE
added 2019/09/10 7:0 a.m.21 views

Remote Desktop Client Remote Code Execution Vulnerability

A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server. An attacker who successfully exploited this vulnerability could execute arbitrary code on the computer of the connecting client. An attacker could then install programs;...

9.3CVSS2.3AI score0.12476EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2019/09/10 7:0 a.m.471 views

Remote Desktop Client Remote Code Execution Vulnerability

A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server. An attacker who successfully exploited this vulnerability could execute arbitrary code on the computer of the connecting client. An attacker could then install programs;...

9.3CVSS2.3AI score0.12531EPSS
Exploits0
CNVD
CNVD
added 2019/09/10 12:0 a.m.2 views

Microsoft Windows Remote Desktop Client Remote Code Execution Vulnerability (CNVD-2019-37189)

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. Windows Remote Desktop Client is one of the Windows remote desktop client programs. A remo...

9.3CVSS8.5AI score0.12476EPSS
Exploits0References1
Kaspersky
Kaspersky
added 2019/09/10 12:0 a.m.76 views

KLA11552 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges, obtain sensitive information, spoof user interface, execute arbitrary code, bypass security restrictions. Below is a complete list of...

9.3CVSS10AI score0.61314EPSS
Exploits9References65
BDU FSTEC
BDU FSTEC
added 2019/04/25 12:0 a.m.8 views

The vulnerability of the seamless_process function in the RDP-client rdesktop library, related to integer overflow, allows an attacker to execute arbitrary code by causing a stack-based buffer overflow.

The vulnerability of the seamlessprocess function in the RDP client rdesktop is related to a numerical overflow that causes a buffer overflow based on a queue. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...

9.8CVSS8.4AI score0.08214EPSS
Exploits1References5Affected Software2
OpenVAS
OpenVAS
added 2019/04/05 12:0 a.m.21 views

Fedora Update for remmina FEDORA-2019-b2d986c3e9

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.3AI score
Exploits0References2
CNVD
CNVD
added 2019/03/18 12:0 a.m.3 views

Remote code execution vulnerability in rdesktop (CNVD-2019-12478)

rdesktop is an open source remote desktop client program. A remote code execution vulnerability exists in rdesktop 1.8.3 and earlier versions that originates when a networked system or product performs an operation in memory without properly validating data boundaries, resulting in an incorrect...

9.8CVSS8.4AI score0.08214EPSS
Exploits1References1
OSV
OSV
added 2019/03/05 3:29 p.m.2 views

CVE-2019-8259

UltraVNC revision 1198 contains multiple memory leaks CWE-655 in VNC client code, which allow an attacker to read stack memory and can be abused for information disclosure. Combined with another vulnerability, it can be used to leak stack memory and bypass ASLR. This attack appears to be...

7.5CVSS7.1AI score0.03009EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2019/03/01 12:0 a.m.5 views

The vulnerability in the implementation of the “process_plane” function in the RDP client rdesktop, related to buffer overflow, allows a hacker to execute arbitrary code.

The vulnerability of the “processplane” function implementation in the RDP client rdesktop is related to buffer overflow. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9.8CVSS8.3AI score0.07056EPSS
Exploits0References4Affected Software2
Microsoft KB
Microsoft KB
added 2018/04/17 12:0 a.m.150 views

MS09-044: Description of the security update for Remote Desktop Client version 6.0 and 6.1: August 11, 2009

MS09-044: Description of the security update for Remote Desktop Client version 6.0 and 6.1: August 11, 2009 INTRODUCTION Microsoft has released security bulletin MS09-044. To view the complete security bulletin, visit one of the following Microsoft Web sites: Home...

6AI score
Exploits0
Fedora
Fedora
added 2017/08/07 9:22 p.m.30 views

[SECURITY] Fedora 25 Update: remmina-1.2.0-0.39.20170724git0387ee0.fc25

Remmina is a remote desktop client written in GTK+, aiming to be useful for system administrators and travelers, who need to work with lots of remote computers in front of either large monitors or tiny net-books. Remmina supports multiple network protocols in an integrated and consistent user...

8.8CVSS2.1AI score0.01826EPSS
Exploits6
Packet Storm
Packet Storm
added 2017/01/23 12:0 a.m.49 views

Microsoft Remote Desktop Client For Mac 8.0.36 Remote Code Execution

Advisory ID: SGMA16-004 Title: Microsoft Remote Desktop Client for Mac Remote Code Execution Product: Microsoft Remote Desktop Client for Mac Version: 8.0.36 and probably prior Vendor: www.microsoft.com Type: Arbitrary file read/write leads to RCE Risk level: 4 / 5 Credit:...

Exploits0
Tenable Nessus
Tenable Nessus
added 2013/04/10 12:0 a.m.90 views

MS13-029: Vulnerability in Remote Desktop Client Could Allow Remote Code Execution (2828223)

The remote host contains a version of the Remote Desktop ActiveX control that is affected by a remote code execution vulnerability when attempting to access an object in memory that has been deleted. If an attacker can trick a user on the affected system into opening a specially crafted webpage,...

9.3CVSS6.4AI score0.20661EPSS
Exploits1References3
Microsoft KB
Microsoft KB
added 2013/04/09 12:0 a.m.41 views

MS13-029: Vulnerability in Remote Desktop Client could allow remote code execution: April 9, 2013

Resolves a vulnerability in Windows Remote Desktop Client that could allow remote code execution if a user views a specially crafted webpage.INTRODUCTIONMicrosoft has released security bulletin MS13-029. To view the complete security bulletin, go to one of the following Microsoft websites: Home...

9.3CVSS6.7AI score0.20661EPSS
Exploits1
OpenVAS
OpenVAS
added 2011/03/09 12:0 a.m.31 views

Microsoft Remote Desktop Client Remote Code Execution Vulnerability (2508062)

This host is missing a critical security update according to Microsoft Bulletin MS11-017. OpenVAS Vulnerability Test $Id: secpodms11-017.nasl 5362 2017-02-20 12:46:39Z cfi $ Microsoft Remote Desktop Client Remote Code Execution Vulnerability 2508062 Authors: Veerendra GG Copyright: Copyright c 20...

9.3CVSS0.6AI score0.0716EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2011/03/09 12:0 a.m.58 views

Microsoft Remote Desktop Client Remote Code Execution Vulnerability (2508062)

This host is missing a critical security update according to Microsoft Bulletin MS11-017. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

9.3CVSS5AI score0.0716EPSS
Exploits4References3
Microsoft KB
Microsoft KB
added 2011/03/08 12:0 a.m.30 views

MS11-017: Description of the security update for Remote Desktop client 7.0: March 8, 2011

None None...

5.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2011/03/08 12:0 a.m.45 views

MS11-017: Vulnerabilities in Remote Desktop Connection Could Allow Remote Code Execution (2508062)

The remote host contains a version of the Remote Desktop client that incorrectly restricts the path used for loading external libraries. If an attacker can trick a user on the affected system into opening a specially crafted .rdp file located in the same network directory as a specially crafted...

9.3CVSS6.2AI score0.0716EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2009/08/11 12:0 a.m.24 views

MS09-044: Vulnerabilities in Remote Desktop Connection Could Allow Remote Code Execution (Mac OS X)

The remote host contains a version of the Remote Desktop client that contains several vulnerabilities that may allow an attacker to execute arbitrary code on the remote host. To exploit these vulnerabilities, an attacker would need to trick a user of the remote host into connecting to a rogue RDP...

9.3CVSS5.8AI score0.34534EPSS
Exploits0References3
Rows per page
Query Builder