rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function cssp_read_tsrequest() that results in a Denial of Service (segfault).
The product reads from a buffer using buffer access mechanisms such as indexes or pointers that reference memory locations after the targeted buffer.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Rdesktop | Rdesktop | * | 1.8.3 (including) |
Rdesktop | Ubuntu | bionic | * |
Rdesktop | Ubuntu | cosmic | * |
Rdesktop | Ubuntu | esm-apps/bionic | * |
Rdesktop | Ubuntu | esm-apps/xenial | * |
Rdesktop | Ubuntu | trusty | * |
Rdesktop | Ubuntu | upstream | * |
Rdesktop | Ubuntu | xenial | * |