Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.9
CVSSv3

CVE-2020-11042

Published: 07/05/2020 Updated: 24/10/2023
CVSS v2 Base Score: 4.9 | Impact Score: 4.9 | Exploitability Score: 6.8
CVSS v3 Base Score: 5.9 | Impact Score: 5.2 | Exploitability Score: 0.7
VMScore: 436
Vector: AV:N/AC:M/Au:S/C:P/I:N/A:P
Subscribe to Freerdp

Vulnerability Summary

In FreeRDP greater than 1.1 and prior to 2.0.0, there is an out-of-bounds read in update_read_icon_info. It allows reading a attacker-defined amount of client memory (32bit unsigned -> 4GB) to an intermediate buffer. This can be used to crash the client or store information for later retrieval. This has been patched in 2.0.0.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

freerdp freerdp

debian debian linux 9.0

debian debian linux 10.0

canonical ubuntu linux 18.04

canonical ubuntu linux 19.10

canonical ubuntu linux 20.04

canonical ubuntu linux 16.04

Vendor Advisories

Red Hat: Moderate: freerdp and vinagre security, bug fix, and enhancement update
Synopsis Moderate: freerdp and vinagre security, bug fix, and enhancement update Type/Severity Security Advisory: Moderate Topic An update for freerdp and vinagre is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Moderate A Common ...
Ubuntu Security Notice: freerdp2 vulnerabilities
Several security issues were fixed in FreeRDP ...
Ubuntu Security Notice: freerdp vulnerabilities
Several security issues were fixed in FreeRDP ...
Amazon Linux 2: ALAS2-2020-1516
In FreeRDP less than or equal to 200, a possible resource exhaustion vulnerability can be performed Malicious clients could trigger out of bound reads causing memory allocation with random size This has been fixed in 210 (CVE-2020-11018) In FreeRDP less than or equal to 200, when running with logger set to "WLOG_TRACE", a possible crash of ...
Arch Linux Issues:
An out-of-bounds read issue has been found in FreeRDP before 200, allowing an attacker to read a defined amount of client memory (32bit unsigned -> 4GB) to an intermediate buffer Can be used to crash the client or store information for later retrieval ...

References

CWE-125https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-9jp6-5vf2-cx2qhttps://github.com/FreeRDP/FreeRDP/commit/6b2bc41935e53b0034fe5948aeeab4f32e80f30fhttps://github.com/FreeRDP/FreeRDP/issues/6010https://usn.ubuntu.com/4379-1/https://usn.ubuntu.com/4382-1/https://lists.debian.org/debian-lts-announce/2020/08/msg00054.htmlhttps://lists.debian.org/debian-lts-announce/2023/10/msg00008.htmlhttps://access.redhat.com/errata/RHSA-2020:4647https://usn.ubuntu.com/4379-1/https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581reflected XSSCVE-2024-26925CVE-2024-27956LFICVE-2024-3607CVE-2024-3107CVE-2024-3295SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook