Henrik Andersson

20 exploits Active since Feb 2019
CVE-2019-0708 NOMISEC CRITICAL STUB
CVE-2019-0708 BlueKeep RDP Remote Windows Kernel Use After Free
A remote code execution vulnerability exists in Remote Desktop Services formerly known as Terminal Services when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.
1 stars
CVSS 9.8
CVE-2018-20174 WRITEUP HIGH WRITEUP
rdesktop <= 1.8.3 - Out-of-Bounds Read in ui_clip_handle_data
rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in the function ui_clip_handle_data() that results in an information leak.
CVSS 7.5
CVE-2018-20175 WRITEUP HIGH WRITEUP
rdesktop <= 1.8.3 - Denial of Service via Integer Signedness Errors in mcs.c
rdesktop versions up to and including v1.8.3 contains several Integer Signedness errors that lead to Out-Of-Bounds Reads in the file mcs.c and result in a Denial of Service (segfault).
CVSS 7.5
CVE-2018-20176 WRITEUP HIGH WRITEUP
rdesktop <= 1.8.3 - Denial of Service via Out-of-Bounds Read in secure.c
rdesktop versions up to and including v1.8.3 contain several Out-Of- Bounds Reads in the file secure.c that result in a Denial of Service (segfault).
CVSS 7.5
CVE-2018-20177 WRITEUP CRITICAL WRITEUP
rdesktop <= 1.8.3 - Integer Overflow to Heap-Based Buffer Overflow in rdp_in_unistr()
rdesktop versions up to and including v1.8.3 contain an Integer Overflow that leads to a Heap-Based Buffer Overflow in the function rdp_in_unistr() and results in memory corruption and possibly even a remote code execution.
CVSS 9.8
CVE-2018-20178 WRITEUP HIGH WRITEUP
rdesktop <= 1.8.3 - Denial of Service via Out-of-Bounds Read in process_demand_active()
rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in the function process_demand_active() that results in a Denial of Service (segfault).
CVSS 7.5
CVE-2018-20179 WRITEUP CRITICAL WRITEUP
rdesktop <= 1.8.3 - Integer Underflow and Heap-Based Buffer Overflow in lspci_process()
rdesktop versions up to and including v1.8.3 contain an Integer Underflow that leads to a Heap-Based Buffer Overflow in the function lspci_process() and results in memory corruption and probably even a remote code execution.
CVSS 9.8
CVE-2018-20180 WRITEUP CRITICAL WRITEUP
rdesktop <= 1.8.3 - Integer Underflow and Heap-Based Buffer Overflow in rdpsnddbg_process()
rdesktop versions up to and including v1.8.3 contain an Integer Underflow that leads to a Heap-Based Buffer Overflow in the function rdpsnddbg_process() and results in memory corruption and probably even a remote code execution.
CVSS 9.8
CVE-2018-20181 WRITEUP CRITICAL WRITEUP
rdesktop <= 1.8.3 - Integer Underflow and Heap-Based Buffer Overflow in seamless_process()
rdesktop versions up to and including v1.8.3 contain an Integer Underflow that leads to a Heap-Based Buffer Overflow in the function seamless_process() and results in memory corruption and probably even a remote code execution.
CVSS 9.8
CVE-2018-20182 WRITEUP CRITICAL WRITEUP
rdesktop <= 1.8.3 - Buffer Overflow in seamless_process_line()
rdesktop versions up to and including v1.8.3 contain a Buffer Overflow over the global variables in the function seamless_process_line() that results in memory corruption and probably even a remote code execution.
CVSS 9.8
CVE-2018-8791 WRITEUP HIGH WRITEUP
rdesktop <= 1.8.3 - Out-of-Bounds Read in rdpdr_process()
rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function rdpdr_process() that results in an information leak.
CVSS 7.5
CVE-2018-8792 WRITEUP HIGH WRITEUP
rdesktop <= 1.8.3 - Denial of Service via Out-of-Bounds Read in cssp_read_tsrequest()
rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function cssp_read_tsrequest() that results in a Denial of Service (segfault).
CVSS 7.5
CVE-2018-8793 WRITEUP CRITICAL WRITEUP
rdesktop <= 1.8.3 - Heap-Based Buffer Overflow in cssp_read_tsrequest
rdesktop versions up to and including v1.8.3 contain a Heap-Based Buffer Overflow in function cssp_read_tsrequest() that results in a memory corruption and probably even a remote code execution.
CVSS 9.8
CVE-2018-8794 WRITEUP CRITICAL WRITEUP
rdesktop <1.8.3 - Memory Corruption
rdesktop versions up to and including v1.8.3 contain an Integer Overflow that leads to an Out-Of-Bounds Write in function process_bitmap_updates() and results in a memory corruption and possibly even a remote code execution.
CVSS 9.8
CVE-2018-8795 WRITEUP CRITICAL WRITEUP
rdesktop <= 1.8.3 - Integer Overflow to Heap-Based Buffer Overflow in process_bitmap_updates()
rdesktop versions up to and including v1.8.3 contain an Integer Overflow that leads to a Heap-Based Buffer Overflow in function process_bitmap_updates() and results in a memory corruption and probably even a remote code execution.
CVSS 9.8
CVE-2018-8796 WRITEUP HIGH WRITEUP
rdesktop <= 1.8.3 - Denial of Service via Out-of-Bounds Read in process_bitmap_updates()
rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function process_bitmap_updates() that results in a Denial of Service (segfault).
CVSS 7.5
CVE-2018-8797 WRITEUP CRITICAL WRITEUP
rdesktop <= 1.8.3 - Heap-Based Buffer Overflow in process_plane()
rdesktop versions up to and including v1.8.3 contain a Heap-Based Buffer Overflow in function process_plane() that results in a memory corruption and probably even a remote code execution.
CVSS 9.8
CVE-2018-8798 WRITEUP HIGH WRITEUP
rdesktop <= 1.8.3 - Out-of-Bounds Read in rdpsnd_process_ping()
rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function rdpsnd_process_ping() that results in an information leak.
CVSS 7.5
CVE-2018-8799 WRITEUP HIGH WRITEUP
rdesktop <= 1.8.3 - Denial of Service via Out-of-Bounds Read in process_secondary_order()
rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function process_secondary_order() that results in a Denial of Service (segfault).
CVSS 7.5
CVE-2018-8800 WRITEUP CRITICAL WRITEUP
rdesktop <= 1.8.3 - Heap-Based Buffer Overflow in ui_clip_handle_data
rdesktop versions up to and including v1.8.3 contain a Heap-Based Buffer Overflow in function ui_clip_handle_data() that results in a memory corruption and probably even a remote code execution.
CVSS 9.8