rdesktop-1.4.1-4.2AXS3
エラータID: AXSA:2008-87:01
rdesktop is an open source client for Microsoft Windows NT Terminal Server and Microsoft Windows 2000 and 2003 Terminal Services, capable of natively using the Remote Desktop Protocol (RDP) to present the user's NT desktop. No additional server extensions are required.
CVE-2008-1801: Integer underflow in the iso_recv_msg function (iso.c) in rdesktop 1.5.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Remote Desktop Protocol (RDP) request with a small length field.
CVE-2008-1803: Integer signedness error in the xrealloc function (rdesktop.c) in RDesktop 1.5.0 allows remote attackers to execute arbitrary code via unknown parameters that trigger a heap-based overflow. NOTE: the role of the channel_process function was not specified by the original researcher.
Update packages.
Integer underflow in the iso_recv_msg function (iso.c) in rdesktop 1.5.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Remote Desktop Protocol (RDP) request with a small length field.
Integer signedness error in the xrealloc function (rdesktop.c) in RDesktop 1.5.0 allows remote attackers to execute arbitrary code via unknown parameters that trigger a heap-based overflow. NOTE: the role of the channel_process function was not specified by the original researcher.
N/A
Asianux Server 3 for x86
- rdesktop-1.4.1-4.2AXS3.i386.rpm
MD5: de509607d957fc5a9edc3d172e4c228a
SHA-256: f1a2f1eba77e68b74763c84dec8725fab3ba47c441deeee6b1392bc374b0af8e
Size: 118.55 kB
Asianux Server 3 for x86_64
- rdesktop-1.4.1-4.2AXS3.x86_64.rpm
MD5: a3e74ebcafc73120bb6a27463ccee3e2
SHA-256: c33fe86e5d4d6775307ade51e26369ca4525ba89bb9936a7d64abcef72ccb2c7
Size: 126.32 kB