Main Vulnerability Database Exploits ID:3742 - Exploit for Integer underflow - CVE-2018-20179

ID:3742 - Exploit for Integer underflow - CVE-2018-20179

Published: August 4, 2020

Vulnerability identifier: #VU33452

Vulnerability risk: High

CVE-ID: CVE-2018-20179

CWE-ID: CWE-191

Exploitation vector: Remote access

Vulnerable software:

Link to public exploit:

https://cpr-zero.checkpoint.com/vulns/cprid-2031/

Vulnerability description

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

rdesktop versions up to and including v1.8.3 contain an Integer Underflow that leads to a Heap-Based Buffer Overflow in the function lspci_process() and results in memory corruption and probably even a remote code execution.

Remediation

Install update from vendor's website.

ID:3742 - Exploit for Integer underflow - CVE-2018-20179

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human