Lucene search
K

13 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-25303

Malware in sbrugna...

7.8CVSS7.7AI score0.02404EPSS
Exploits0References10
SUSE CVE
SUSE CVE
added 2023/02/15 4:3 a.m.3 views

SUSE CVE-2020-4044

The xrdp-sesman service before version 0.9.13.1 can be crashed by connecting over port 3350 and supplying a malicious payload. Once the xrdp-sesman process is dead, an unprivileged attacker on the server could then proceed to start their own imposter sesman service listening on port 3350. This wi...

7.1CVSS8.1AI score0.02404EPSS
Exploits0References10
Veracode
Veracode
added 2020/12/06 3:54 a.m.18 views

Arbitrary Code Execution

xrdp is vulnrerable to arbitrary code execution. The xrdp-sesman service can be crashed via a buffer overflow by connecting over port 3350 and supplying a malicious payload, potentially resulting in arbitrary code execution...

7.8CVSS5.3AI score0.02404EPSS
Exploits0References8Affected Software1
CNVD
CNVD
added 2020/07/01 12:0 a.m.16 views

xrdp-sesman service buffer overflow vulnerability

xrdp-sesman service is an open source RDP Remote Desktop Protocol server. A buffer overflow vulnerability exists in xrdp-sesman service versions prior to 0.9.13.1, which can be exploited by a remote attacker to execute arbitrary code on a system or cause an application to crash denial of service ...

7.8CVSS9.8AI score0.02404EPSS
Exploits0References1
NVD
NVD
added 2020/06/30 4:15 p.m.9 views

CVE-2020-4044

The xrdp-sesman service before version 0.9.13.1 can be crashed by connecting over port 3350 and supplying a malicious payload. Once the xrdp-sesman process is dead, an unprivileged attacker on the server could then proceed to start their own imposter sesman service listening on port 3350. This wi...

7.8CVSS0.02404EPSS
Exploits0References7
OSV
OSV
added 2020/06/30 4:15 p.m.2 views

DEBIAN-CVE-2020-4044

The xrdp-sesman service before version 0.9.13.1 can be crashed by connecting over port 3350 and supplying a malicious payload. Once the xrdp-sesman process is dead, an unprivileged attacker on the server could then proceed to start their own imposter sesman service listening on port 3350. This wi...

7.8CVSS8.8AI score0.02404EPSS
Exploits0References1
Prion
Prion
added 2020/06/30 4:15 p.m.15 views

Buffer overflow

The xrdp-sesman service before version 0.9.13.1 can be crashed by connecting over port 3350 and supplying a malicious payload. Once the xrdp-sesman process is dead, an unprivileged attacker on the server could then proceed to start their own imposter sesman service listening on port 3350. This wi...

4.6CVSS7.8AI score0.02404EPSS
Exploits0References7Affected Software1
UbuntuCve
UbuntuCve
added 2020/06/30 4:15 p.m.26 views

CVE-2020-4044

The xrdp-sesman service before version 0.9.13.1 can be crashed by connecting over port 3350 and supplying a malicious payload. Once the xrdp-sesman process is dead, an unprivileged attacker on the server could then proceed to start their own imposter sesman service listening on port 3350. This wi...

7.8CVSS7.8AI score0.02404EPSS
Exploits0References5
OSV
OSV
added 2020/06/30 4:15 p.m.2 views

UBUNTU-CVE-2020-4044

The xrdp-sesman service before version 0.9.13.1 can be crashed by connecting over port 3350 and supplying a malicious payload. Once the xrdp-sesman process is dead, an unprivileged attacker on the server could then proceed to start their own imposter sesman service listening on port 3350. This wi...

7.8CVSS7.9AI score0.02404EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2020/06/30 3:55 p.m.19 views

CVE-2020-4044

The xrdp-sesman service before version 0.9.13.1 can be crashed by connecting over port 3350 and supplying a malicious payload. Once the xrdp-sesman process is dead, an unprivileged attacker on the server could then proceed to start their own imposter sesman service listening on port 3350. This wi...

7.8CVSS2.9AI score0.02404EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2020/06/30 3:55 p.m.29 views

CVE-2020-4044

The xrdp-sesman service before version 0.9.13.1 can be crashed by connecting over port 3350 and supplying a malicious payload. Once the xrdp-sesman process is dead, an unprivileged attacker on the server could then proceed to start their own imposter sesman service listening on port 3350. This wi...

7.8CVSS7.9AI score0.02404EPSS
Exploits0
Cvelist
Cvelist
added 2020/06/30 3:55 p.m.16 views

CVE-2020-4044 Local users can perform a buffer overflow attack against the xrdp-sesman service and then impersonate it

The xrdp-sesman service before version 0.9.13.1 can be crashed by connecting over port 3350 and supplying a malicious payload. Once the xrdp-sesman process is dead, an unprivileged attacker on the server could then proceed to start their own imposter sesman service listening on port 3350. This wi...

7.5CVSS7.9AI score0.02404EPSS
Exploits0References7
FreeBSD
FreeBSD
added 2020/06/02 12:0 a.m.23 views

xrdp -- Local users can perform a buffer overflow attack against the xrdp-sesman service and then inpersonate it

Ashley Newson reports: The xrdp-sesman service can be crashed by connecting over port 3350 and supplying a malicious payload. Once the xrdp-sesman process is dead, an unprivileged attacker on the server could then proceed to start their own imposter sesman service listening on port 3350...

7.8CVSS4.5AI score0.02404EPSS
Exploits0References2
Rows per page
Query Builder