589 matches found
[SECURITY] [DSA 1573-1] New rdesktop packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1573-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst May 11, 2008 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1573-1] New php5 packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1573-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst May 11, 2008 http://www.debian.org/security/faq -...
rdesktop 1.5.0 process_redirect_pdu() BSS Overflow Vulnerability PoC
Exploit for linux platform in category dos / poc ==================================================================== rdesktop 1.5.0 processredirectpdu BSS Overflow Vulnerability PoC ==================================================================== !/usr/bin/perl...
DSA-1573-1 rdesktop - several vulnerabilities
Bulletin has no description...
rdesktop 1.5.0 - 'process_redirect_pdu()' BSS Overflow (PoC)
!/usr/bin/perl http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=697 use strict; use IO::Socket; my $sock = IO::Socket::INET-newLocalAddr = '0.0.0.0', LocalPort = '3389', Listen = 1, Reuse = 1 || die$!; my $evil = "\x03\x00\x01\x47\x02\xf0\x80\x68\x00\x01\x03\xeb\x70\x81\x38"...
rdesktop 1.5.0 process_redirect_pdu() BSS Overflow Vulnerability PoC
No description provided by source. !/usr/bin/perl http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=697 use strict; use IO::Socket; my $sock = IO::Socket::INET-newLocalAddr = '0.0.0.0', LocalPort = '3389', Listen = 1, Reuse = 1 || die$!; my $evil =...
rdesktop 1.5.0 - process_redirect_pdu() BSS Overflow (PoC)
rdesktop 1.5.0 - processredirectpdu BSS Overflow PoC !/usr/bin/perl http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=697 use strict; use IO::Socket; my $sock = IO::Socket::INET-newLocalAddr = '0.0.0.0', LocalPort = '3389', Listen = 1, Reuse = 1 || die$!; my $evil =...
rdesktop 1.5.0 iso_recv_msg() Integer Underflow Vulnerability PoC
No description provided by source. !/usr/bin/perl http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=696 use warnings; use strict; use IO::Socket; my $sock = IO::Socket::INET-newLocalAddr = '0.0.0.0', LocalPort = '3389', Listen = 1, Reuse = 1 || die$!; whilemy $c = $sock-accept...
rdesktop多个缓冲区溢出漏洞
BUGTRAQ ID: 29097 CVECAN ID: CVE-2008-1801,CVE-2008-1802,CVE-2008-1803 rdesktop是实现RDP协议的开源客户端,允许基于Unix的用户登录到Windows终端服务器。 rdesktop负责重新分配动态缓冲区的代码(channelprocess)中存在堆溢出漏洞。rdesktop的xrealloc函数使用有符比较判断所请求的分配大小是否小于1。如果小于1的话,这个函数错误的将分配大小设置为1,这导致分配了错误大小的堆缓冲区,之后会被溢出。...
iDefense Security Advisory 05.07.08: Multiple Vendor rdesktop iso_recv_msg() Integer Underflow Vulnerability
iDefense Security Advisory 05.07.08 http://labs.idefense.com/intelligence/vulnerabilities/ May 07, 2008 I. BACKGROUND rdesktop is an open source client that speaks the Remote Desktop Protocol RDP. This allows Unix-based users to login to Windows Terminal Servers. More information is available at...
rdesktop multiple security vulnerabilities
Multiple integer overflows and buffer overflows on RDP server response parsing...
iDefense Security Advisory 05.07.08: Multiple Vendor rdesktop channel_process() Integer Signedness Vulnerability
iDefense Security Advisory 05.07.08 http://labs.idefense.com/intelligence/vulnerabilities/ May 07, 2008 I. BACKGROUND rdesktop is an open source client that speaks the Remote Desktop Protocol RDP. This allows Unix-based users to login to Windows Terminal Servers. More information is available at...
rdesktop 1.5.0 iso_recv_msg() Integer Underflow Vulnerability PoC
Exploit for linux platform in category dos / poc ================================================================= rdesktop 1.5.0 isorecvmsg Integer Underflow Vulnerability PoC ================================================================= !/usr/bin/perl...
rdesktop 1.5.0 - iso_recv_msg() Integer Underflow (PoC)
rdesktop 1.5.0 - isorecvmsg Integer Underflow PoC !/usr/bin/perl http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=696 use warnings; use strict; use IO::Socket; my $sock = IO::Socket::INET-newLocalAddr = '0.0.0.0', LocalPort = '3389', Listen = 1, Reuse = 1 || die$!; whilemy $c ...
rdesktop 1.5.0 - 'iso_recv_msg()' Integer Underflow (PoC)
!/usr/bin/perl http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=696 use warnings; use strict; use IO::Socket; my $sock = IO::Socket::INET-newLocalAddr = '0.0.0.0', LocalPort = '3389', Listen = 1, Reuse = 1 || die$!; whilemy $c = $sock-accept print $c "\x03" . TPKT version "\x0...
iDefense Security Advisory 05.07.08: Multiple Vendor rdesktop process_redirect_pdu() BSS Overflow Vulnerability
iDefense Security Advisory 05.07.08 http://labs.idefense.com/intelligence/vulnerabilities/ May 07, 2008 I. BACKGROUND rdesktop is an open source client that speaks the Remote Desktop Protocol RDP. This allows Unix-based users to login to Windows Terminal Servers. More information is available at...
Ubuntu 6.06 LTS / 6.10 : rdesktop regression (USN-453-2)
USN-453-1 provided an updated libx11 package to fix a security vulnerability. This triggered an error in rdesktop so that it crashed on startup. This update fixes the problem. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security...
Debian DSA-1294-1 : xfree86 - several vulnerabilities
Several vulnerabilities have been discovered in the X Window System, which may lead to privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-1003 Sean Larsson discovered an integer overflow in the XC-MISC extension, which might lead ...
USN-453-2: rdesktop regression
USN-453-1 provided an updated libx11 package to fix a security vulnerability. This triggered an error in rdesktop so that it crashed on startup. This update fixes the problem...
security flaw
rdesktop 1.3.1 with xscreensaver 4.14, and possibly other versions, when running on Fedora and possibly other platforms, does not release the keyboard focus when xscreensaver starts, which causes the password to be entered into the active window when the user unlocks the screen...