14 matches found
RHEL 7 : freerdp (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - freerdp: Out-of-bounds write in rdprecvtpktpdu CVE-2017-2835 - freerdp: Integer Overflow leading to Heap...
Mageia: Security Advisory (MGASA-2017-0475)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
vallhebron.com Cross Site Scripting vulnerability OBB-1195816
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
CVE-2017-2834
CVE-2017-2834 describes an exploitable code execution vulnerability in FreeRDP 2.0.0-beta1+android11, specifically in the authentication functionality. A specially crafted server response can trigger an out-of-bounds write, creating an exploitable condition. The vulnerability could allow an attac...
FreeRDP Rdp Client License Recv Code Execution Vulnerability(CVE-2017-2834)
Summary An exploitable code execution vulnerability exists in the authentication functionality of FreeRDP 2.0.0-beta1+android11. A specially crafted server response can cause an out-of-bounds write resulting in an exploitable condition. An attacker can compromise the server or use a man in the...
openSUSE Security Update : freerdp (openSUSE-2017-992)
This update for freerdp fixes the following issues : - CVE-2017-2834: Out-of-bounds write in licenserecv bsc1050714 - CVE-2017-2835: Out-of-bounds write in rdprecvtpktpdu bsc1050712 - CVE-2017-2836: Rdp Client Read Server Proprietary Certificate Denial of Service bsc1050699 - CVE-2017-2837: Clien...
Security update for freerdp (important)
This update for freerdp fixes the following issues: - CVE-2017-2834: Out-of-bounds write in licenserecv bsc1050714 - CVE-2017-2835: Out-of-bounds write in rdprecvtpktpdu bsc1050712 - CVE-2017-2836: Rdp Client Read Server Proprietary Certificate Denial of Service bsc1050699 - CVE-2017-2837: Client...
SUSE-SU-2017:2234-1 Security update for freerdp
This update for freerdp fixes the following issues: - CVE-2017-2834: Out-of-bounds write in licenserecv bsc1050714 - CVE-2017-2835: Out-of-bounds write in rdprecvtpktpdu bsc1050712 - CVE-2017-2836: Rdp Client Read Server Proprietary Certificate Denial of Service bsc1050699 - CVE-2017-2837: Client...
Ubuntu 14.04 LTS / 16.04 LTS : FreeRDP vulnerabilities (USN-3380-1)
The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3380-1 advisory. It was discovered that FreeRDP incorrectly handled certain width and height values. A malicious server could use this issue to cause FreeRDP ...
Ubuntu: Security Advisory (USN-3380-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-3380-1: FreeRDP vulnerabilities
It was discovered that FreeRDP incorrectly handled certain width and height values. A malicious server could use this issue to cause FreeRDP to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only applied to Ubuntu 14.04 LTS. CVE-2014-0250 It was discovered...
[SECURITY] [DSA 3923-1] freerdp security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3923-1 [email protected] https://www.debian.org/security/ Sebastien Delafond August 01, 2017 https://www.debian.org/security/faq -...
Fedora 26 : 2:freerdp / remmina (2017-4bc09c2364)
Update to latest snapshot that contains fixes for the latest Talos discovered CVEs. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible witho...
CVE-2017-2834
An exploitable code execution vulnerability exists in the authentication functionality of FreeRDP 2.0.0-beta1+android11. A specially crafted server response can cause an out-of-bounds write resulting in an exploitable condition. An attacker can compromise the server or use a man in the middle...