CVE-2008-5904

xrdp <0.4.1 - Buffer Overflow

Title source: llm

Description

The rdp_rdp_process_color_pointer_pdu function in rdp/rdp_rdp.c in xrdp 0.4.1 and earlier allows remote RDP servers to have an unknown impact via input data that sets crafted values for certain length variables, leading to a buffer overflow.

Exploits (1)

exploitdb WORKING POC VERIFIED
by joe walko · cdoslinux
https://www.exploit-db.com/exploits/8469

References (4)

Scores

EPSS 0.0282
EPSS Percentile 86.2%

Details

CWE
CWE-20
Status published
Products (5)
xrdp/xrdp 0.3
xrdp/xrdp 0.3.1
xrdp/xrdp 0.3.2
xrdp/xrdp 0.4
xrdp/xrdp < 0.4.1
Published Jan 15, 2009
Tracked Since Feb 18, 2026