Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rdesktop rdesktop vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2011-1595
Directory traversal vulnerability in the disk_create function in disk.c in rdesktop prior to 1.7.0, when disk redirection is enabled, allows remote RDP servers to read or overwrite arbitrary files via a .. (dot dot) in a pathname.
Rdesktop Rdesktop 1.0.0
Rdesktop Rdesktop 1.1.0
Rdesktop Rdesktop 1.5.0
Rdesktop Rdesktop 1.4.0
Rdesktop Rdesktop
Rdesktop Rdesktop 1.2.0
Rdesktop Rdesktop 1.3.0
Rdesktop Rdesktop 1.3.1
Rdesktop Rdesktop 1.4.1
5
CVSSv2
CVE-2018-20174
rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in the function ui_clip_handle_data() that results in an information leak.
Rdesktop Rdesktop
5
CVSSv2
CVE-2018-20176
rdesktop versions up to and including v1.8.3 contain several Out-Of- Bounds Reads in the file secure.c that result in a Denial of Service (segfault).
Rdesktop Rdesktop
7.5
CVSSv2
CVE-2018-20179
rdesktop versions up to and including v1.8.3 contain an Integer Underflow that leads to a Heap-Based Buffer Overflow in the function lspci_process() and results in memory corruption and probably even a remote code execution.
Rdesktop Rdesktop
5
CVSSv2
CVE-2019-15682
RDesktop version 1.8.4 contains multiple out-of-bound access read vulnerabilities in its code, which results in a denial of service (DoS) condition. This attack appear to be exploitable via network connectivity. These issues have been fixed in version 1.8.5
Rdesktop Rdesktop 1.8.4
9.3
CVSSv2
CVE-2008-1801
Integer underflow in the iso_recv_msg function (iso.c) in rdesktop 1.5.0 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a Remote Desktop Protocol (RDP) request with a small length field.
Rdesktop Rdesktop 1.5.0
1 EDB exploit
9.3
CVSSv2
CVE-2008-1802
Buffer overflow in the process_redirect_pdu (rdp.c) function in rdesktop 1.5.0 allows remote malicious users to execute arbitrary code via a Remote Desktop Protocol (RDP) redirect request with modified length fields.
Rdesktop Rdesktop 1.5.0
1 EDB exploit
9.3
CVSSv2
CVE-2008-1803
Integer signedness error in the xrealloc function (rdesktop.c) in RDesktop 1.5.0 allows remote malicious users to execute arbitrary code via unknown parameters that trigger a heap-based overflow. NOTE: the role of the channel_process function was not specified by the original res...
Rdesktop Rdesktop 1.5.0
5
CVSSv2
CVE-2018-8791
rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function rdpdr_process() that results in an information leak.
Rdesktop Rdesktop
Debian Debian Linux 8.0
Debian Debian Linux 9.0
5
CVSSv2
CVE-2018-8792
rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function cssp_read_tsrequest() that results in a Denial of Service (segfault).
Rdesktop Rdesktop
Debian Debian Linux 8.0
Debian Debian Linux 9.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »