MS13-029: Vulnerability in Remote Desktop Client could allow remote code execution: April 9, 2013

Resolves a vulnerability in Windows Remote Desktop Client that could allow remote code execution if a user views a specially crafted webpage.INTRODUCTIONMicrosoft has released security bulletin MS13-029. To view the complete security bulletin, go to one of the following Microsoft websites: Home...

ScrumWorks Pro privilege escalation vulnerability

Overview ScrumWorks Pro versions prior to ScrumWorks Pro 6.0 contain a privilege escalation vulnerability. Description ScrumWorks Pro versions prior to ScrumWorks Pro 6.0 contain a privilege escalation vulnerability where a malicious user can escalate the privileges of their ScrumWorks Pro accoun...

Minitube: Insecure temporary file usage

Background Minitube is a Qt4 YouTube desktop client. Description Tomáš Pružina reported that Minitube does not handle temporary files securely. Impact A local attacker could perform symlink attacks to overwrite arbitrary files with the privileges of the user running the application. Workaround...

Evernote Desktop Client Detection

Binary data 6339.prm...

Microsoft Remote Desktop Client Remote Code Execution Vulnerability (2508062)

This host is missing a critical security update according to Microsoft Bulletin MS11-017. OpenVAS Vulnerability Test $Id: secpodms11-017.nasl 5362 2017-02-20 12:46:39Z cfi $ Microsoft Remote Desktop Client Remote Code Execution Vulnerability 2508062 Authors: Veerendra GG Copyright: Copyright c 20...

Microsoft Remote Desktop Client Remote Code Execution Vulnerability (2508062)

This host is missing a critical security update according to Microsoft Bulletin MS11-017. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

MS11-017: Vulnerabilities in Remote Desktop Connection Could Allow Remote Code Execution (2508062)

The remote host contains a version of the Remote Desktop client that incorrectly restricts the path used for loading external libraries. If an attacker can trick a user on the affected system into opening a specially crafted .rdp file located in the same network directory as a specially crafted...

MS09-044: Vulnerabilities in Remote Desktop Connection Could Allow Remote Code Execution (Mac OS X)

The remote host contains a version of the Remote Desktop client that contains several vulnerabilities that may allow an attacker to execute arbitrary code on the remote host. To exploit these vulnerabilities, an attacker would need to trick a user of the remote host into connecting to a rogue RDP...

Serena Dimensions CM Desktop Client does not validate the server SSL certificate

Application: Serena Dimensions CM Affected versions: 10.1 and later Vulnerability: man-in-the-middle attacks Problem type: remote Problem description: ==================== The client/server connection can be SSL encrypted by setting "-ssl" in the listener.dat. The problem is that the Desktop clie...

CVE-2004-0962

Apple Remote Desktop Client 1.2.4 is affected: when launched by an Apple Remote Desktop Administrator, it can run a GUI application as root, enabling remote authenticated users to execute arbitrary code with loginwindow active via Fast User Switching. This is corroborated by Red Hat and CVE datab...

Centrinity FirstClass Desktop Client 7.1 - Local Buffer Overflow

// source: https://www.securityfocus.com/bid/10074/info It has been reported that FirstClass Desktop Client may be prone to a local buffer overflow vulnerability that could allow attackers to execute arbitrary code on a vulnerable system that may lead to elevated privileges. The issue is reported...

CVE-2004-0037

FirstClass Desktop Client 7.1 allows remote attackers to execute arbitrary commands via hyperlinks in FirstClass RTF messages...

CVE-2004-0037

FirstClass Desktop Client 7.1 allows remote attackers to execute arbitrary commands via hyperlinks in FirstClass RTF messages...

CVE-2004-0037

The CVE-2004-0037 record concerns FirstClass Desktop Client 7.1. The vulnerability arises from hyperlinks embedded in FirstClass RTF messages, which allow a remote attacker to execute arbitrary commands on the affected client. Documented impact indicates arbitrary command execution with network a...

firstclass71.txt

Product: FirstClass Desktop Client 7.1 Developer: SoftArc URL: http://www.softarc.com/ Description: Users clicking on a maliciously crafted link will result in local file execution. Details: FirstClass RTF formatted messages can include hyper-links to web URL's. When the messages recipient clicks...

CVE-2003-0766

Multiple heap-based buffer overflows in FTP Desktop client 3.5, and possibly earlier versions, allow remote malicious servers to execute arbitrary code via 1 a long FTP banner, 2 a long response to a USER command, or 3 a long response to a PASS command...

CVE-2003-0766

Multiple heap-based buffer overflows in FTP Desktop client 3.5, and possibly earlier versions, allow remote malicious servers to execute arbitrary code via 1 a long FTP banner, 2 a long response to a USER command, or 3 a long response to a PASS command...

App-V WD SKU Installed

Detects whether the App-V Desktop Client is installed...

App-V WD SKU Installed - no prereqs

Determines whether the core App-V Desktop Client is installed, regardless of the installation state of any prerequisites...