CVE-2018-20179


03/15/2019

CVE-2018-20179

rdesktop versions up to and including v1.8.3 contain an Integer Underflow that leads to a Heap-Based Buffer Overflow in the function lspci_process() and results in memory corruption and probably even a remote code execution.

Attack vector: 
Network

Product: 
rdesktop: rdesktop

References: 

Severity: 
High

CVSS Score: 
7.5

CVSS Vector: 
(AV:N/AC:L/Au:N/C:P/I:P/A:P)

Patch: 
patch



Don't forget to share

You may also like...

Leave a Reply

Your email address will not be published. Required fields are marked *