CVE-2011-1595
- EPSS 1.09%
- Veröffentlicht 24.05.2011 23:55:02
- Zuletzt bearbeitet 16.06.2026 23:29:42
Directory traversal vulnerability in the disk_create function in disk.c in rdesktop before 1.7.0, when disk redirection is enabled, allows remote RDP servers to read or overwrite arbitrary files via a .. (dot dot) in a pathname.
CVE-2008-1803
- EPSS 6.74%
- Veröffentlicht 12.05.2008 22:20:00
- Zuletzt bearbeitet 16.06.2026 22:52:31
Integer signedness error in the xrealloc function (rdesktop.c) in RDesktop 1.5.0 allows remote attackers to execute arbitrary code via unknown parameters that trigger a heap-based overflow. NOTE: the role of the channel_process function was not spec...
CVE-2008-1801
- EPSS 13.13%
- Veröffentlicht 12.05.2008 16:20:00
- Zuletzt bearbeitet 16.06.2026 22:52:30
Integer underflow in the iso_recv_msg function (iso.c) in rdesktop 1.5.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Remote Desktop Protocol (RDP) request with a small length field.
CVE-2008-1802
- EPSS 12.98%
- Veröffentlicht 12.05.2008 16:20:00
- Zuletzt bearbeitet 16.06.2026 22:52:30
Buffer overflow in the process_redirect_pdu (rdp.c) function in rdesktop 1.5.0 allows remote attackers to execute arbitrary code via a Remote Desktop Protocol (RDP) redirect request with modified length fields.