Published: 29/11/2018 Updated: 03/06/2019

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

FreeRDP prior to version 2.0.0-rc4 contains an Out-Of-Bounds Write of up to 4 bytes in function nsc_rle_decode() that results in a memory corruption and possibly even a remote code execution.

Vulnerable Product	Search on Vulmon	Subscribe to Product
freerdp freerdp 2.0.0
freerdp freerdp
canonical ubuntu linux 14.04
canonical ubuntu linux 18.10
canonical ubuntu linux 18.04
canonical ubuntu linux 16.04
debian debian linux 8.0

Synopsis Important: freerdp security update Type/Severity Security Advisory: Important Topic An update for freerdp is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, ...

Several security issues were fixed in FreeRDP ...

FreeRDP prior to version 200-rc4 contains an Out-Of-Bounds Write of up to 4 bytes in function nsc_rle_decode() that results in a memory corruption and possibly even a remote code execution(CVE-2018-8788) FreeRDP prior to version 200-rc4 contains an Integer Overflow that leads to a Heap-Based Buffer Overflow in function gdi_Bitmap_Decompress() ...

CWE-787 https://github.com/FreeRDP/FreeRDP/commit/d1112c279bd1a327e8e4d0b5f371458bf2579659 https://usn.ubuntu.com/3845-1/http://www.securityfocus.com/bid/106938 https://lists.debian.org/debian-lts-announce/2019/02/msg00015.html https://research.checkpoint.com/reverse-rdp-attack-code-execution-on-rdp-clients/https://access.redhat.com/errata/RHSA-2019:0697 https://usn.ubuntu.com/3845-2/https://access.redhat.com/errata/RHSA-2019:0697 https://nvd.nist.gov https://usn.ubuntu.com/3845-1/

CVE-2018-8788

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect