CVE-2008-1803

Severity

93%

Complexity

86%

Confidentiality

165%

Integer signedness error in the xrealloc function (rdesktop.c) in RDesktop 1.5.0 allows remote attackers to execute arbitrary code via unknown parameters that trigger a heap-based overflow. NOTE: the role of the channel_process function was not specified by the original researcher.

Integer signedness error in the xrealloc function (rdesktop.c) in RDesktop 1.5.0 allows remote attackers to execute arbitrary code via unknown parameters that trigger a heap-based overflow. NOTE: the role of the channel_process function was not specified by the original researcher.

CVSS 2.0 Base Score 9.3. CVSS Attack Vector: network. CVSS Attack Complexity: medium. CVSS Vector: (AV:N/AC:M/Au:N/C:C/I:C/A:C).

Overview

First reported 16 years ago

2008-05-12 22:20:00

Last updated 7 years ago

2017-09-29 01:30:00

Affected Software

rdesktop 1.5.0

1.5.0

References

20080507 Multiple Vendor rdesktop channel_process() Integer Signedness Vulnerability

http://rdesktop.cvs.sourceforge.net/rdesktop/rdesktop/rdesktop.c?r1=1.161&r2=1.162&pathrev=HEAD

Exploit

30118

Vendor Advisory

30248

Vendor Advisory

30713

Vendor Advisory

31224

Vendor Advisory

31928

Vendor Advisory

GLSA-200806-04

http://sourceforge.net/mailarchive/message.php?msg_name=20080511065217.GA24455%40cse.unsw.EDU.AU

Patch

240708

http://support.avaya.com/elmodocs2/security/ASA-2008-360.htm

DSA-1573

MDVSA-2008:101

FEDORA-2008-3886

FEDORA-2008-3917

FEDORA-2008-3985

RHSA-2008:0575

Vendor Advisory

29097

1019992

USN-646-1

ADV-2008-1467

Vendor Advisory

ADV-2008-2403

Vendor Advisory

rdesktop-xrealloc-bo(42277)

oval:org.mitre.oval:def:9800

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.