Freerdp

Freerdp

157 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2018-1000852

Exploit
  • EPSS 0.83%
  • Veröffentlicht 20.12.2018 15:29:02
  • Zuletzt bearbeitet 21.11.2024 03:40:29

FreeRDP FreeRDP 2.0.0-rc3 released version before commit 205c612820dac644d665b5bb1cdf437dc5ca01e3 contains a Other/Unknown vulnerability in channels/drdynvc/client/drdynvc_main.c, drdynvc_process_capability_request that can result in The RDP server c...

7.5

CVE-2018-8789

Exploit
  • EPSS 1.65%
  • Veröffentlicht 29.11.2018 18:29:01
  • Zuletzt bearbeitet 21.11.2024 04:14:19

FreeRDP prior to version 2.0.0-rc4 contains several Out-Of-Bounds Reads in the NTLM Authentication module that results in a Denial of Service (segfault).

9.8

CVE-2018-8784

Exploit
  • EPSS 13%
  • Veröffentlicht 29.11.2018 18:29:00
  • Zuletzt bearbeitet 21.11.2024 04:14:18

FreeRDP prior to version 2.0.0-rc4 contains a Heap-Based Buffer Overflow in function zgfx_decompress_segment() that results in a memory corruption and probably even a remote code execution.

9.8

CVE-2018-8785

Exploit
  • EPSS 13%
  • Veröffentlicht 29.11.2018 18:29:00
  • Zuletzt bearbeitet 21.11.2024 04:14:18

FreeRDP prior to version 2.0.0-rc4 contains a Heap-Based Buffer Overflow in function zgfx_decompress() that results in a memory corruption and probably even a remote code execution.

9.8

CVE-2018-8786

Exploit
  • EPSS 17.75%
  • Veröffentlicht 29.11.2018 18:29:00
  • Zuletzt bearbeitet 21.11.2024 04:14:18

FreeRDP prior to version 2.0.0-rc4 contains an Integer Truncation that leads to a Heap-Based Buffer Overflow in function update_read_bitmap_update() and results in a memory corruption and probably even a remote code execution.

9.8

CVE-2018-8787

Exploit
  • EPSS 12.73%
  • Veröffentlicht 29.11.2018 18:29:00
  • Zuletzt bearbeitet 21.11.2024 04:14:18

FreeRDP prior to version 2.0.0-rc4 contains an Integer Overflow that leads to a Heap-Based Buffer Overflow in function gdi_Bitmap_Decompress() and results in a memory corruption and probably even a remote code execution.

9.8

CVE-2018-8788

Exploit
  • EPSS 7.23%
  • Veröffentlicht 29.11.2018 18:29:00
  • Zuletzt bearbeitet 21.11.2024 04:14:18

FreeRDP prior to version 2.0.0-rc4 contains an Out-Of-Bounds Write of up to 4 bytes in function nsc_rle_decode() that results in a memory corruption and possibly even a remote code execution.

7

CVE-2017-2834

  • EPSS 1.07%
  • Veröffentlicht 24.04.2018 19:29:02
  • Zuletzt bearbeitet 21.11.2024 03:24:14

An exploitable code execution vulnerability exists in the authentication functionality of FreeRDP 2.0.0-beta1+android11. A specially crafted server response can cause an out-of-bounds write resulting in an exploitable condition. An attacker can compr...

8.1

CVE-2017-2835

  • EPSS 0.68%
  • Veröffentlicht 24.04.2018 19:29:02
  • Zuletzt bearbeitet 21.11.2024 03:24:14

An exploitable code execution vulnerability exists in the RDP receive functionality of FreeRDP 2.0.0-beta1+android11. A specially crafted server response can cause an out-of-bounds write resulting in an exploitable condition. An attacker can compromi...

5.9

CVE-2017-2836

  • EPSS 0.3%
  • Veröffentlicht 24.04.2018 19:29:02
  • Zuletzt bearbeitet 21.11.2024 03:24:14

An exploitable denial of service vulnerability exists within the reading of proprietary server certificates in FreeRDP 2.0.0-beta1+android11. A specially crafted challenge packet can cause the program termination leading to a denial of service condit...