3 matches found
openSUSE Security Update : xrdp (xrdp-458)
This update fixes multiple buffer overflows that can be exploited remotely to execute arbitrary code. CVE-2008-5902, CVE-2008-5903, CVE-2008-5904 Additionally xrdp does not register remote session as local anymore. Please note, the previous update was missing the patch. %NASLMINLEVEL 70300 C...
CVE-2008-5904
The connected documents confirm CVE-2008-5904 affects xrdp up to version 0.4.1, in the function rdp_rdp_process_color_pointer_pdu within rdp/rdp_rdp.c. The vulnerability arises from crafted input data that sets certain length variables, leading to a buffer overflow with unspecified impact. The NV...
CVE-2008-5904
The rdprdpprocesscolorpointerpdu function in rdp/rdprdp.c in xrdp 0.4.1 and earlier allows remote RDP servers to have an unknown impact via input data that sets crafted values for certain length variables, leading to a buffer overflow...