589 matches found
RHEL 6 : rdesktop (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - rdesktop: Remote code execution in uicliphandledata CVE-2018-8800 - rdesktop versions up to and including...
SUSE CVE-2004-2655
rdesktop 1.3.1 with xscreensaver 4.14, and possibly other versions, when running on Fedora and possibly other platforms, does not release the keyboard focus when xscreensaver starts, which causes the password to be entered into the active window when the user unlocks the screen...
SUSE CVE-2008-1802
Buffer overflow in the processredirectpdu rdp.c function in rdesktop 1.5.0 allows remote attackers to execute arbitrary code via a Remote Desktop Protocol RDP redirect request with modified length fields...
SUSE CVE-2008-1803
Integer signedness error in the xrealloc function rdesktop.c in RDesktop 1.5.0 allows remote attackers to execute arbitrary code via unknown parameters that trigger a heap-based overflow. NOTE: the role of the channelprocess function was not specified by the original researcher...
SUSE CVE-2011-1595
Directory traversal vulnerability in the diskcreate function in disk.c in rdesktop before 1.7.0, when disk redirection is enabled, allows remote RDP servers to read or overwrite arbitrary files via a .. dot dot in a pathname...
SUSE CVE-2018-8792
rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function csspreadtsrequest that results in a Denial of Service segfault...
SUSE CVE-2018-8793
rdesktop versions up to and including v1.8.3 contain a Heap-Based Buffer Overflow in function csspreadtsrequest that results in a memory corruption and probably even a remote code execution...
SUSE CVE-2018-8791
rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function rdpdrprocess that results in an information leak...
SUSE CVE-2018-8794
rdesktop versions up to and including v1.8.3 contain an Integer Overflow that leads to an Out-Of-Bounds Write in function processbitmapupdates and results in a memory corruption and possibly even a remote code execution...
SUSE CVE-2018-8795
rdesktop versions up to and including v1.8.3 contain an Integer Overflow that leads to a Heap-Based Buffer Overflow in function processbitmapupdates and results in a memory corruption and probably even a remote code execution...
SUSE CVE-2018-8796
rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function processbitmapupdates that results in a Denial of Service segfault...
SUSE CVE-2018-8799
rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function processsecondaryorder that results in a Denial of Service segfault...
SUSE CVE-2018-8797
rdesktop versions up to and including v1.8.3 contain a Heap-Based Buffer Overflow in function processplane that results in a memory corruption and probably even a remote code execution...
SUSE CVE-2018-8798
rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function rdpsndprocessping that results in an information leak...
SUSE CVE-2018-8800
rdesktop versions up to and including v1.8.3 contain a Heap-Based Buffer Overflow in function uicliphandledata that results in a memory corruption and probably even a remote code execution...
SUSE CVE-2018-20174
rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in the function uicliphandledata that results in an information leak...
SUSE CVE-2018-20175
rdesktop versions up to and including v1.8.3 contains several Integer Signedness errors that lead to Out-Of-Bounds Reads in the file mcs.c and result in a Denial of Service segfault...
SUSE CVE-2018-20176
rdesktop versions up to and including v1.8.3 contain several Out-Of- Bounds Reads in the file secure.c that result in a Denial of Service segfault...
SUSE CVE-2018-20177
rdesktop versions up to and including v1.8.3 contain an Integer Overflow that leads to a Heap-Based Buffer Overflow in the function rdpinunistr and results in memory corruption and possibly even a remote code execution...
SUSE CVE-2018-20178
rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in the function processdemandactive that results in a Denial of Service segfault...