Astra Linux - уязвимость в xrdp

XRDPT is an open-source remote desktop protocol RDP server. In versions prior to 0.9.23, improper handling of session establishment errors allowed bypassing OS-level session restrictions. The authstartsession function could return a non-zero value 1 in the event of, for example, PAM errors. This...

EUVD-2017-7084

Malware in sbrugna...

SUSE CVE-2023-40184

xrdp is an open source remote desktop protocol RDP server. In versions prior to 0.9.23 improper handling of session establishment errors allows bypassing OS-level session restrictions. The authstartsession function can return non-zero 1 value on, e.g., PAM error which may result in in session...

DEBIAN-CVE-2023-40184

xrdp is an open source remote desktop protocol RDP server. In versions prior to 0.9.23 improper handling of session establishment errors allows bypassing OS-level session restrictions. The authstartsession function can return non-zero 1 value on, e.g., PAM error which may result in in session...

UBUNTU-CVE-2023-40184

xrdp is an open source remote desktop protocol RDP server. In versions prior to 0.9.23 improper handling of session establishment errors allows bypassing OS-level session restrictions. The authstartsession function can return non-zero 1 value on, e.g., PAM error which may result in in session...

xrdp 安全漏洞

xrdp is an open source remote desktop protocol server from Neutrinolabs Labs. A security vulnerability exists in xrdp versions prior to 0.9.23, which stems from an internal mishandling of xrdp-sesman that results in session limits being bypassed...

PT-2022-4448 · Opcua +2 · Opcua +2

Name of the Vulnerable Software and Affected Versions: opcua versions all asyncua versions all Description: The issue is related to an uncontrolled consumption of resources in the opcua and asyncua libraries. This can be exploited by a remote attacker to cause a denial of service. The vulnerabili...

Target Credential Issues by Authentication Protocol - Intermittent Authentication Failure

Nessus was able to successfully authenticate to the remote host on an authentication protocol at least once using credentials provided in the scan policy. However, one or more plugins failed to authenticate to the remote host on the same port and protocol using the same credential set that was...

CVE-2017-15635

TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the maxconn variable in the sessionlimits.lua file...

CVE-2017-15633

TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-ipgroup variable in the sessionlimits.lua file...

Command injection

TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the maxconn variable in the sessionlimits.lua file...

Command injection

TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbitrary commands via command injection in the new-ipgroup variable in the sessionlimits.lua file...

TP-Link WVR, WAR and ER Device Arbitrary Command Execution Vulnerability (CNVD-2018-02028)

TP-Link WVR, WAR and ER devices are all different series of router products from China P&L TP-LINK. A security vulnerability exists in the TP-Link WVR, WAR, and ER devices. A remote attacker can exploit the vulnerability by injecting commands into the maxconn variable of the sessionlimits.lua fil...

TP-Link WVR, WAR and ER Device Arbitrary Command Execution Vulnerability (CNVD-2018-02030)

TP-Link WVR, WAR and ER devices are all different series of router products from China P&L TP-LINK. A security vulnerability exists in the TP-Link WVR, WAR, and ER devices. The vulnerability can be exploited by a remote attacker to execute arbitrary commands by injecting commands into the...

CVE-2002-0234

NetScreen ScreenOS before 2.6.1 does not support a maximum number of concurrent sessions for a system, which allows an attacker on the trusted network to cause a denial of service resource exhaustion via a port scan to an external network, which consumes all available connections...