Vulnerabilities > Rdesktop

DATE CVE VULNERABILITY TITLE RISK
2019-02-05 CVE-2018-8800 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
rdesktop versions up to and including v1.8.3 contain a Heap-Based Buffer Overflow in function ui_clip_handle_data() that results in a memory corruption and probably even a remote code execution.
network
low complexity
rdesktop debian CWE-119
7.5
2019-02-05 CVE-2018-8799 Out-of-bounds Read vulnerability in multiple products
rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function process_secondary_order() that results in a Denial of Service (segfault).
network
low complexity
rdesktop debian CWE-125
5.0
2019-02-05 CVE-2018-8798 Out-of-bounds Read vulnerability in multiple products
rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function rdpsnd_process_ping() that results in an information leak.
network
low complexity
rdesktop debian CWE-125
5.0
2019-02-05 CVE-2018-8797 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
rdesktop versions up to and including v1.8.3 contain a Heap-Based Buffer Overflow in function process_plane() that results in a memory corruption and probably even a remote code execution.
network
low complexity
rdesktop debian CWE-119
7.5
2019-02-05 CVE-2018-8796 Out-of-bounds Read vulnerability in multiple products
rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function process_bitmap_updates() that results in a Denial of Service (segfault).
network
low complexity
rdesktop debian CWE-125
5.0
2019-02-05 CVE-2018-8795 Integer Overflow or Wraparound vulnerability in multiple products
rdesktop versions up to and including v1.8.3 contain an Integer Overflow that leads to a Heap-Based Buffer Overflow in function process_bitmap_updates() and results in a memory corruption and probably even a remote code execution.
network
low complexity
rdesktop debian CWE-190
7.5
2019-02-05 CVE-2018-8794 Integer Overflow or Wraparound vulnerability in multiple products
rdesktop versions up to and including v1.8.3 contain an Integer Overflow that leads to an Out-Of-Bounds Write in function process_bitmap_updates() and results in a memory corruption and possibly even a remote code execution.
network
low complexity
rdesktop debian CWE-190
7.5
2019-02-05 CVE-2018-8793 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
rdesktop versions up to and including v1.8.3 contain a Heap-Based Buffer Overflow in function cssp_read_tsrequest() that results in a memory corruption and probably even a remote code execution.
network
low complexity
rdesktop debian CWE-119
7.5
2019-02-05 CVE-2018-8792 Out-of-bounds Read vulnerability in multiple products
rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function cssp_read_tsrequest() that results in a Denial of Service (segfault).
network
low complexity
rdesktop debian CWE-125
5.0
2019-02-05 CVE-2018-8791 Out-of-bounds Read vulnerability in multiple products
rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function rdpdr_process() that results in an information leak.
network
low complexity
rdesktop debian CWE-125
5.0