Lucene search
Ubuntu.comUB:CVE-2011-0900HistoryFeb 07, 2011 - 12:00 a.m.
CVE-2011-0900
2011-02-0700:00:00
ubuntu.com
ubuntu.com
7
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
EPSS
0.078
Percentile
94.2%
Stack-based buffer overflow in the tsc_launch_remote function
(src/support.c) in Terminal Server Client (tsclient) 0.150, and possibly
other versions, allows user-assisted remote attackers to execute arbitrary
code via a .RDP file with a long hostname argument.
Notes
| Author | Note |
|---|---|
| jdstrand | should be protected by stack-protector (investigate) no patch from upstream sbversion as of 2011-02-08 (http://tsclient.svn.sourceforge.net/viewvc/tsclient/) |
Related
prion
prion
Stack overflow
2011-02-07 21:00:00
cve
cve
CVE-2011-0900
2011-02-07 21:00:16
cvelist
cvelist
CVE-2011-0900
2011-02-07 20:19:00
nvd
nvd
CVE-2011-0900
2011-02-07 21:00:16
openvas
openvas
Terminal Server Client RDP File Processing BOF Vulnerabilities
2011-02-28 00:00:00
Terminal Server Client RDP File Processing BOF Vulnerabilities
2011-02-28 00:00:00
ubuntucve
ubuntucve
CVE-2011-0901
2011-02-07 00:00:00
exploitdb
exploitdb
Terminal Server Client - '.rdp' Denial of Service
2011-02-02 00:00:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
EPSS
0.078
Percentile
94.2%
Related for UB:CVE-2011-0900