2 matches found
CVE-2013-1296
The CVE-2013-1296 issue affects Microsoft Remote Desktop Connection Client (mstscax.dll) ActiveX in versions 6.1 and 7.0. It is a use-after-free memory access vulnerability that allows remote code execution when a user visits a malicious webpage or when handling objects in memory, yielding the sa...
CVE-2009-1133
CVE-2009-1133 corresponds to a heap-based buffer overflow in Microsoft Remote Desktop Connection (mstsc/ mstscax.dll) affecting RDP clients (RDP 5.0–6.1 on Windows and Mac 2.0). The underlying flaw occurs during parsing of data from the RDP server, allowing a remote attacker to execute arbitrary ...