Lucene search
K

13 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:29 a.m.3 views

SUSE CVE-2018-8792

rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function csspreadtsrequest that results in a Denial of Service segfault...

7.5CVSS6.8AI score0.04071EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2019/03/01 12:0 a.m.5 views

The vulnerability in the implementation of the “cssp_read_tsrequest” function in the RDP client rdesktop software arises from buffer overflow in memory, allowing an attacker to execute arbitrary code.

The vulnerability of the “csspreadtsrequest” function in the RDP client rdesktop implementation is related to buffer overflow in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

9.8CVSS8.2AI score0.07056EPSS
Exploits0References4Affected Software2
OSV
OSV
added 2019/02/05 8:29 p.m.3 views

ALPINE-CVE-2018-8793

rdesktop versions up to and including v1.8.3 contain a Heap-Based Buffer Overflow in function csspreadtsrequest that results in a memory corruption and probably even a remote code execution...

9.8CVSS8.1AI score0.07056EPSS
Exploits0References1
OSV
OSV
added 2019/02/05 8:29 p.m.3 views

ALPINE-CVE-2018-8792

rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function csspreadtsrequest that results in a Denial of Service segfault...

7.5CVSS6.7AI score0.04071EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2019/02/05 8:29 p.m.3 views

CVE-2018-8792

rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function csspreadtsrequest that results in a Denial of Service segfault...

7.5CVSS5.4AI score0.04071EPSS
Exploits0References9
ICS
ICS
added 2018/08/23 12:0 p.m.19 views

7-Technologies IGSS Denial of Service (Update A)

Overview ICS-CERT has become aware of multiple denial-of-service DoS vulnerabilities in the 7-Technologies 7T Interactive Graphical SCADA System IGSS supervisory control and data acquisition SCADA human-machine interface HMI application. All vulnerabilities are remotely exploitable. 7T has...

7.7AI score
Exploits0References21
ICS
ICS
added 2013/05/01 12:0 p.m.27 views

Invensys Wonderware HMI Reports XSS and Write Access Violation Vulnerabilities

Overview Independent security researchers Billy Rios and Terry McCorkle have identified cross-site scripting XSS and write access violation vulnerabilities in the Invensys Wonderware HMI reports product. ICS-CERT has coordinated these two vulnerabilities with Invensys, which has produced a new...

7.5AI score
Exploits0References18
ICS
ICS
added 2012/12/21 7:0 a.m.61 views

Microsoft Remote Desktop Protocol Memory Corruption Vulnerability

Overview ICS-CERT is aware of a public report of a Remote Desktop Protocol RDP vulnerability with proof-of-concept PoC exploit code affecting multiple Microsoft Windows operating systems. RDP is a proprietary protocol developed by Microsoft, which provides a user with a graphical interface to...

9.3CVSS9.7AI score0.73924EPSS
Exploits11References10
ICS
ICS
added 2012/10/27 6:0 a.m.40 views

MICROSYS PROMOTIC Vulnerabilities

Overview This advisory is a follow-up to ICS-ALERT-11-286-01 - MICROSYS PROMOTIC Vulnerabilities, released to the ICS-CERT Web page on October 12, 2011. Independent researcher Luigi Auriemma has identified and released three vulnerabilities in MICROSYS, spol. s r.o. PROMOTIC application without...

5CVSS7AI score0.26385EPSS
Exploits0References10
ICS
ICS
added 2012/10/19 6:0 a.m.29 views

Cogent DataHub XSS and CRLF

Overview ICS-CERT is aware of a public report of multiple vulnerabilities in Cogent’s DataHub application. These vulnerabilities include cross-site scripting and an HTTP header injection vulnerability, also known as a carriage return line feed. According to the report, Cogent Real-Times Systems...

5.8CVSS6.9AI score0.01512EPSS
Exploits0References10
ICS
ICS
added 2012/02/25 7:0 a.m.61 views

Measuresoft ScadaPro DLL Hijack

Overview Independent researcher Carlos Mario Penagos Hollmann identified a remotely exploitable, uncontrolled search path element vulnerability, commonly referred to as a DLL hijack, in Measuresoft’s ScadaPro application. Measuresoft has produced an upgrade to address this vulnerability. Mr...

7.2CVSS7.3AI score0.00476EPSS
Exploits0References10
ICS
ICS
added 2011/07/28 6:0 a.m.32 views

Sielco Sistemi Winlog Buffer Overflow

Overview ICS-CERT originally released Advisory ICSA-11-298-01P on the US-CERT secure portal on October 25, 2011. This web page release was delayed to allow users time to download and install the update. Independent researcher Paul Davis has identified a buffer overflow vulnerability in Sielco...

9.3CVSS7.3AI score0.04713EPSS
Exploits0References10
ICS
ICS
added 2011/07/03 6:0 a.m.38 views

Rockwell RSLogix Overflow Vulnerability

Overview This updated advisory is a follow-up to the Alert titled “ICS-ALERT-11-256-05A—Rockwell RSLogix Overflow Vulnerability” that was published September 13, 2011, on the Industrial Control Systems Cyber Emergency Response Team ICS-CERT web page. ICS-CERT is aware of a public report of an...

5CVSS6.4AI score0.08977EPSS
Exploits1References10
Rows per page
Query Builder