RDesktop version 1.8.4 contains multiple out-of-bound access read vulnerabilities in its code, which results in a denial of service (DoS) condition. This attack appear to be exploitable via network connectivity. These issues have been fixed in version 1.8.5
References
Link | Resource |
---|---|
https://ics-cert.kaspersky.com/advisories/klcert-advisories/2019/10/30/klcert-19-032-denial-of-service-in-rdesktop-before-1-8-4/ | Broken Link Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Kaspersky
Published: 2019-10-30T15:42:18
Updated: 2019-10-30T15:42:18
Reserved: 2019-08-27T00:00:00
Link: CVE-2019-15682
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-10-30T16:15:15.057
Modified: 2019-11-04T18:11:44.913
Link: CVE-2019-15682
JSON object: View
Redhat Information
No data.
CWE