← voltar
CVE-2008-1801

CVE-2008-1801

EPSS 13.1%
Integer underflow in the iso_recv_msg function (iso.c) in rdesktop 1.5.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Remote Desktop Protocol (RDP) request with a small length field.
Produtos afetados
n/a · n/a
PoCs públicas encontradas1
cve_referencewww.exploit-db.com/exploits/5561não verificado
⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=696http://rdesktop.cvs.sourceforge.net/rdesktop/rdesktop/iso.c?r1=1.19&r2=1.20&pathrev=HEADhttp://secunia.com/advisories/30118http://secunia.com/advisories/30248http://secunia.com/advisories/30380http://secunia.com/advisories/30713http://secunia.com/advisories/31222http://secunia.com/advisories/31224http://secunia.com/advisories/31928http://security.gentoo.org/glsa/glsa-200806-04.xmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/42272http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.395286