Main Vulnerability Database Exploits ID:2711 - Exploit for Out-of-bounds read in rdesktop - CVE-2018-20174

ID:2711 - Exploit for Out-of-bounds read in rdesktop - CVE-2018-20174

Published: May 18, 2020

Vulnerability identifier: #VU18008

Vulnerability risk: Medium

CVE-ID: CVE-2018-20174

CWE-ID: CWE-125

Exploitation vector: Remote access

Vulnerable software:
rdesktop

Link to public exploit:

https://cpr-zero.checkpoint.com/vulns/cprid-2024/

Vulnerability description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to a boundary error in the function ui_clip_handle_data(). A remote attacker can send a specially crafted request to the affected application, trigger out-of-bounds read error and read contents of memory on the system.

Remediation

Install update from vendor's website.

ID:2711 - Exploit for Out-of-bounds read in rdesktop - CVE-2018-20174

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human