Lucene search
K

12 matches found

OpenVAS
OpenVAS
added 2023/01/27 12:0 a.m.19 views

Ubuntu: Security Advisory (USN-4815-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.4CVSS7.7AI score0.01177EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.17 views

Mageia: Security Advisory (MGASA-2017-0456)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.4CVSS7.7AI score0.00408EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2018/01/15 12:0 a.m.24 views

Fedora 27 : 1:xrdp (2017-b891f919c5)

Patch CVE-2017-16927. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenabl...

8.4CVSS6.7AI score0.00408EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2018/01/10 12:0 a.m.16 views

Fedora Update for xrdp FEDORA-2017-4603342f9a

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.4CVSS8.4AI score0.00408EPSS
Exploits0References2
Mageia
Mageia
added 2017/12/21 5:43 p.m.34 views

Updated xrdp packages fix security vulnerability

The scpv0saccept function in sesman/libscp/libscpv0.c in the session manager in xrdp through 0.9.4 uses an untrusted integer as a write length, which allows local users to cause a denial of service buffer overflow and application crash or possibly have unspecified other impact via a crafted input...

8.4CVSS5.4AI score0.00408EPSS
Exploits0References2
Debian
Debian
added 2017/12/13 6:10 p.m.21 views

[SECURITY] [DLA 1203-2] xrdp regression update

Package : xrdp Version : 0.5.0-2+deb7u3 A regression was added by the patch introduced in version 0.5.0-2+deb7u2 to fix CVE-2017-16927: xrdp-sesman started to segfault in libscp. For Debian 7 "Wheezy", these problems have been fixed in version 0.5.0-2+deb7u3. We recommend that you upgrade your xr...

8.4CVSS8.1AI score0.00408EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/12/12 12:0 a.m.27 views

Debian DLA-1203-2 : xrdp regression update

A regression was added by the patch introduced in version 0.5.0-2+deb7u2 to fix CVE-2017-16927: xrdp-sesman started to segfault in libscp. For Debian 7 'Wheezy', these problems have been fixed in version 0.5.0-2+deb7u3. We recommend that you upgrade your xrdp packages. NOTE: Tenable Network...

8.4CVSS6.7AI score0.00408EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2017/12/10 12:0 a.m.15 views

Fedora Update for xrdp FEDORA-2017-f67f3ffb5d

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.4CVSS8.4AI score0.00408EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2017/12/10 12:0 a.m.21 views

Fedora Update for xrdp FEDORA-2017-b891f919c5

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.4CVSS8.4AI score0.00408EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2017/12/09 12:0 a.m.24 views

Fedora Update for xrdp FEDORA-2017-1fb805bfc2

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.4CVSS8.4AI score0.00408EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2017/11/23 6:29 a.m.21 views

CVE-2017-16927

The scpv0saccept function in sesman/libscp/libscpv0.c in the session manager in xrdp through 0.9.4 uses an untrusted integer as a write length, which allows local users to cause a denial of service buffer overflow and application crash or possibly have unspecified other impact via a crafted input...

8.4CVSS6.9AI score0.00408EPSS
Exploits0References4
CVE
CVE
added 2017/11/23 6:0 a.m.80 views

CVE-2017-16927

CVE-2017-16927 affects xrdp (sesman) where scp_v0s_accept in sesman/libscp/libscp_v0.c uses an untrusted integer as a write length, enabling local denial of service via buffer overflow. Public records (Fedora 26/27, SUSE, Mageia) show this was fixed by upstream in 0.9.4 (and later 0.9.5 in some b...

8.4CVSS7.7AI score0.00408EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder