Integer signedness error in the xrealloc function (rdesktop.c) in RDesktop 1.5.0 allows remote attackers to execute arbitrary code via unknown parameters that trigger a heap-based overflow. NOTE: the role of the channel_process function was not specified by the original researcher.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Rdesktop | Rdesktop | 1.5.0 (including) | 1.5.0 (including) |