Freerdp

Freerdp

103 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2018-8786

Exploit
  • EPSS 19.56%
  • Veröffentlicht 29.11.2018 18:29:00
  • Zuletzt bearbeitet 21.11.2024 04:14:18

FreeRDP prior to version 2.0.0-rc4 contains an Integer Truncation that leads to a Heap-Based Buffer Overflow in function update_read_bitmap_update() and results in a memory corruption and probably even a remote code execution.

9.8

CVE-2018-8787

Exploit
  • EPSS 14.14%
  • Veröffentlicht 29.11.2018 18:29:00
  • Zuletzt bearbeitet 21.11.2024 04:14:18

FreeRDP prior to version 2.0.0-rc4 contains an Integer Overflow that leads to a Heap-Based Buffer Overflow in function gdi_Bitmap_Decompress() and results in a memory corruption and probably even a remote code execution.

9.8

CVE-2018-8788

Exploit
  • EPSS 7.23%
  • Veröffentlicht 29.11.2018 18:29:00
  • Zuletzt bearbeitet 21.11.2024 04:14:18

FreeRDP prior to version 2.0.0-rc4 contains an Out-Of-Bounds Write of up to 4 bytes in function nsc_rle_decode() that results in a memory corruption and possibly even a remote code execution.

7

CVE-2017-2834

  • EPSS 1.23%
  • Veröffentlicht 24.04.2018 19:29:02
  • Zuletzt bearbeitet 21.11.2024 03:24:14

An exploitable code execution vulnerability exists in the authentication functionality of FreeRDP 2.0.0-beta1+android11. A specially crafted server response can cause an out-of-bounds write resulting in an exploitable condition. An attacker can compr...

8.1

CVE-2017-2835

  • EPSS 0.72%
  • Veröffentlicht 24.04.2018 19:29:02
  • Zuletzt bearbeitet 21.11.2024 03:24:14

An exploitable code execution vulnerability exists in the RDP receive functionality of FreeRDP 2.0.0-beta1+android11. A specially crafted server response can cause an out-of-bounds write resulting in an exploitable condition. An attacker can compromi...

5.9

CVE-2017-2836

  • EPSS 0.3%
  • Veröffentlicht 24.04.2018 19:29:02
  • Zuletzt bearbeitet 21.11.2024 03:24:14

An exploitable denial of service vulnerability exists within the reading of proprietary server certificates in FreeRDP 2.0.0-beta1+android11. A specially crafted challenge packet can cause the program termination leading to a denial of service condit...

5.9

CVE-2017-2837

  • EPSS 0.62%
  • Veröffentlicht 24.04.2018 19:29:02
  • Zuletzt bearbeitet 21.11.2024 03:24:14

An exploitable denial of service vulnerability exists within the handling of security data in FreeRDP 2.0.0-beta1+android11. A specially crafted challenge packet can cause the program termination leading to a denial of service condition. An attacker ...

5.9

CVE-2017-2838

  • EPSS 0.62%
  • Veröffentlicht 24.04.2018 19:29:02
  • Zuletzt bearbeitet 21.11.2024 03:24:15

An exploitable denial of service vulnerability exists within the handling of challenge packets in FreeRDP 2.0.0-beta1+android11. A specially crafted challenge packet can cause the program termination leading to a denial of service condition. An attac...

5.9

CVE-2017-2839

  • EPSS 0.62%
  • Veröffentlicht 24.04.2018 19:29:02
  • Zuletzt bearbeitet 21.11.2024 03:24:15

An exploitable denial of service vulnerability exists within the handling of challenge packets in FreeRDP 2.0.0-beta1+android11. A specially crafted challenge packet can cause the program termination leading to a denial of service condition. An attac...

7.5

CVE-2013-4119

  • EPSS 1.14%
  • Veröffentlicht 03.10.2016 21:59:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

FreeRDP before 1.1.0-beta+2013071101 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) by disconnecting before authentication has finished.