Buffer Overflow

libfreerdp.so is vulnerable to Heap-Based Buffer Overflow. The vulnerability is caused due to a defect in the gfxdecompresssegment which results in a memory corruption and possible remote code execution...

Memory Leak

libfreerdp.so is vulnerable to Memory Leak. The vulnerability is due to a supplied realloc pointer being reused for a realloc return value. An attacker can exploit this by causing the program to consume excessive memory, potentially leading to a denial of service...

Improper Authentication

libfreerdp.so is vulnerable to Improper Authentication. The vulnerability is due to invalid credentials being accepted if the server has configured an invalid SAM file path. The attacker can successfully authenticate with invalid credentials if the SAM file path is incorrect...

Out-of-bounds Read

libfreerdp.so is vulnerable to an out-of-bounds read. This vulnerability is due to inadequate bounds checking in the planarskipplanerle function, leading to potential out-of-bounds reads when processing RLE-encoded data...

Out-of-bounds Read

libfreerdp.so is vulnerable to an out-of-bounds read. The vulnerability is due to inadequate bounds checking in the zgfxdecompresssegment function because the variable count is not checked against StreamGetRemainingLength. This could allow an attacker to potentially access sensitive information o...

Out-of-bounds Write

libfreerdp.so is vulnerable to Out-of-bounds write. The vulnerability is due to improper validation of runLengthFactor which can lead to values that exceed the buffer limits, causing memory corruption. This could allow an attacker to potentially access sensitive information or cause a crash in th...

Integer Underflow

libfreerdp.so is vulnerable to an Integer Underflow. The vulnerability is due improper check to ensure a value remains greater than the len value during decompression in the nscrledecode function, which results in improper memory operations based on unchecked length values...

Out-of-bounds Read

libfreerdp.so is vulnerable to an out-of-bounds read. The vulnerability is due to insufficient validation of the SrcSize before reading data from pSrcData, potentially allowing reading beyond the allocated memory when SrcSize is less than 4. This could allow an attacker to access sensitive...

Out-of-bounds Read

libfreerdp.so is vulnerable to Out-of-bounds Read. The vulnerability is caused by not validating a variable pbSrcBuffer for sufficient data length. Insufficient data in the pbSrcBuffer variable can cause errors or crashes leading to Denial Of Service DOS...

Denial Of Service (DoS)

libfreerdp.so is vulnerable to Denial Of Service DoS. The vulnerability is due to a defect in the nscrledecode and nscrledecompressdata functions in the libfreerdp/codec/nsc.c file. This can lead to application crash resulting in Denial of Service DoS...

Denial Of Service (DoS)

libfreerdp.so is vulnerable to Denial Of Service DoS. The vulnerability exists in the rfx.c due to a stack overflow error which allows an attacker to cause an application crash, or potentially execute arbitrary code...

Buffer Overflow

libfreerdp.so is vulnerable to Buffer Overflow. The vulnerability exists due to the global buffer overflow in the ncrushdecompress function of ncrush.c because it does not properly verify offsets while decoding data, which allows an attacker to cause an application crash by providing a maliciousl...

Out-Of-Bounds Write

libfreerdp.so is vulnerable to Out-Of-Bounds Write. The vulnerability occurs while calculating nXSrc and nYSrc variables in the progressivedecompress function of progressive.c due to the missing destination checks, which allows an attacker to cause out-of-bound write...

Out-Of-Bound Read

libfreerdp.so is vulnerable to Out-Of-Bound Read. The vulnerability exists due to the integer underflow in the cBitsRemaining calculation in the zgfxdecompresssegment function of zgfx.c, which allows an attacker to read data beyond the transmitted packet range in the context of CopyMemory, leadin...

Out-Of-Bound Write

libfreerdp.so is vulnerable to Out-Of-Bound Write. The vulnerability exists due to an integer overflow in the freerdpimagecopy function of color.c when an image width or height == 0, which allows an attacker to cause out-of-bound write when image decoding is done by a proxy...

Information Disclosure

libfreerdp.so is vulnerable to information disclosure. The vulnerability exists due to the library's missing input data length checks which allow an attacker to read out-of-bounds data...

Sensitive Information Disclosure

libfreerdp.so is vulnerable to Sensitive Information Disclosure. The vulnerability is due to uninitialized data being sent to the server the client is currently connected to when using /parallel command line switch, which in specific conditions may result in sensitive information disclosure...

Out-of-Bound Reads

libfreerdp.so is vulnerable to Out-of-Bound Reads. The vulnerability exists because it does not properly perform the data boundary check of updatereadbitmapdata, leaking the memory to an image buffer reflecting the result on screen as colour...