Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Freerdp
(Freerdp)Repositories |
• https://github.com/FreeRDP/FreeRDP
• https://github.com/sidhpurwala-huzaifa/FreeRDP |
#Vulnerabilities | 92 |
Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2014-01-03 | CVE-2014-0791 | Integer overflow in the license_read_scope_list function in libfreerdp/core/license.c in FreeRDP through 1.0.2 allows remote RDP servers to cause a denial of service (application crash) or possibly have unspecified other impact via a large ScopeCount value in a Scope List in a Server License Request packet. | Freerdp | N/A | ||
2014-11-16 | CVE-2014-0250 | Multiple integer overflows in client/X11/xf_graphics.c in FreeRDP allow remote attackers to have an unspecified impact via the width and height to the (1) xf_Pointer_New or (2) xf_Bitmap_Decompress function, which causes an incorrect amount of memory to be allocated. | Freerdp, Opensuse | N/A | ||
2016-10-03 | CVE-2013-4119 | FreeRDP before 1.1.0-beta+2013071101 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) by disconnecting before authentication has finished. | Freerdp | 7.5 | ||
2016-10-03 | CVE-2013-4118 | FreeRDP before 1.1.0-beta1 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via unspecified vectors. | Freerdp, Leap, Opensuse | 7.5 | ||
2018-11-29 | CVE-2018-8785 | FreeRDP prior to version 2.0.0-rc4 contains a Heap-Based Buffer Overflow in function zgfx_decompress() that results in a memory corruption and probably even a remote code execution. | Ubuntu_linux, Freerdp | 9.8 | ||
2018-11-29 | CVE-2018-8784 | FreeRDP prior to version 2.0.0-rc4 contains a Heap-Based Buffer Overflow in function zgfx_decompress_segment() that results in a memory corruption and probably even a remote code execution. | Ubuntu_linux, Freerdp | 9.8 | ||
2018-11-29 | CVE-2018-8789 | FreeRDP prior to version 2.0.0-rc4 contains several Out-Of-Bounds Reads in the NTLM Authentication module that results in a Denial of Service (segfault). | Ubuntu_linux, Debian_linux, Freerdp | 7.5 | ||
2018-11-29 | CVE-2018-8788 | FreeRDP prior to version 2.0.0-rc4 contains an Out-Of-Bounds Write of up to 4 bytes in function nsc_rle_decode() that results in a memory corruption and possibly even a remote code execution. | Ubuntu_linux, Debian_linux, Freerdp | 9.8 | ||
2018-11-29 | CVE-2018-8787 | FreeRDP prior to version 2.0.0-rc4 contains an Integer Overflow that leads to a Heap-Based Buffer Overflow in function gdi_Bitmap_Decompress() and results in a memory corruption and probably even a remote code execution. | Ubuntu_linux, Debian_linux, Freerdp | 9.8 |