Published: 23/11/2017 Updated: 07/11/2023

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

CVSS v3 Base Score: 8.4 | Impact Score: 5.9 | Exploitability Score: 2.5

VMScore: 641

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

The scp_v0s_accept function in sesman/libscp/libscp_v0.c in the session manager in xrdp up to and including 0.9.4 uses an untrusted integer as a write length, which allows local users to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted input stream.

Vulnerable Product	Search on Vulmon	Subscribe to Product
neutrinolabs xrdp
debian debian linux 7.0

Debian Bug report logs - #882463 xrdp: CVE-2017-16927: Buffer-overflow in scp_v0s_accept function in session manager Package: src:xrdp; Maintainer for src:xrdp is Debian Remote Maintainers <debian-remote@listsdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 23 Nov 2017 09:00:01 UTC Sever ...

CWE-119 https://github.com/neutrinolabs/xrdp/pull/958 https://lists.debian.org/debian-lts-announce/2017/12/msg00005.html https://groups.google.com/forum/#%21topic/xrdp-devel/PmVfMuy_xBA https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=882463 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2017-16927

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect