CVE-2008-1801
published 2008-05-12CVE-2008-1801: Integer underflow in the iso_recv_msg function (iso.c) in rdesktop 1.5.0 allows remote attackers to cause a denial of service (crash) and possibly execute…
PriorityP350critical9.3CVSS 2.0
AVNACMAuNCCICAC
EXPLOIT
EPSS
13.13%
95.9th percentile
Integer underflow in the iso_recv_msg function (iso.c) in rdesktop 1.5.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Remote Desktop Protocol (RDP) request with a small length field.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | rdesktop | < rdesktop 1.5.0-4+cvs20071006 (bookworm) | rdesktop 1.5.0-4+cvs20071006 (bookworm) |
| rdesktop | rdesktop | — | — |
| rdesktop | rdesktop | >= 0 < 1.5.0-4+cvs20071006 | 1.5.0-4+cvs20071006 |
| rdesktop | rdesktop | >= 0 < 1.5.0-4+cvs20071006 | 1.5.0-4+cvs20071006 |
| rdesktop | rdesktop | >= 0 < 1.5.0-4+cvs20071006 | 1.5.0-4+cvs20071006 |
| rdesktop | rdesktop | >= 0 < 1.5.0-4+cvs20071006 | 1.5.0-4+cvs20071006 |
CVSS provenance
nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
osv9.3CRITICAL
vendor_debian9.3CRITICAL
vendor_redhat9.3CRITICAL
vendor_ubuntu9.3CRITICAL
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
rdesktop vulnerabilities
vendor_ubuntu·2008-09-18·CVSS 9.3
CVE-2008-1802 [CRITICAL] rdesktop vulnerabilities
Title: rdesktop vulnerabilities
Summary: rdesktop vulnerabilities
It was discovered that rdesktop did not properly validate the length
of packet headers when processing RDP requests. If a user were tricked
into connecting to a malicious server, an attacker could cause a
denial of service or possible execute arbitrary code with the
privileges of the user. (CVE-2008-1801)
Multiple buffer overflows were discovered in rdesktop when processing
RDP redirect requests. If a user were tricked into connecting to a
malicious server, an attacker could cause a denial of service or
possible execute arbitrary code with the privileges of the user.
(CVE-2008-1802)
It was discovered that rdesktop performed a signed integer comparison
when reallocating dynamic buffers which could result in a heap-based
o
Red Hat
rdesktop: iso_recv_msg() Integer Underflow Vulnerability
vendor_redhat·2008-05-07·CVSS 9.3
CVE-2008-1801 [CRITICAL] CWE-190 rdesktop: iso_recv_msg() Integer Underflow Vulnerability
rdesktop: iso_recv_msg() Integer Underflow Vulnerability
Integer underflow in the iso_recv_msg function (iso.c) in rdesktop 1.5.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Remote Desktop Protocol (RDP) request with a small length field.
Debian
CVE-2008-1801: rdesktop - Integer underflow in the iso_recv_msg function (iso.c) in rdesktop 1.5.0 allows ...
vendor_debian·2008·CVSS 9.3
CVE-2008-1801 [CRITICAL] CVE-2008-1801: rdesktop - Integer underflow in the iso_recv_msg function (iso.c) in rdesktop 1.5.0 allows ...
Integer underflow in the iso_recv_msg function (iso.c) in rdesktop 1.5.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Remote Desktop Protocol (RDP) request with a small length field.
Scope: local
bookworm: resolved (fixed in 1.5.0-4+cvs20071006)
bullseye: resolved (fixed in 1.5.0-4+cvs20071006)
forky: resolved (fixed in 1.5.0-4+cvs20071006)
sid: resolved (fixed in 1.5.0-4+cvs20071006)
trixie: resolved (fixed in 1.5.0-4+cvs20071006)
GHSA
GHSA-fmmp-hrq3-7r3f: Integer underflow in the iso_recv_msg function (iso
ghsa_unreviewed·2022-05-01
CVE-2008-1801 [HIGH] GHSA-fmmp-hrq3-7r3f: Integer underflow in the iso_recv_msg function (iso
Integer underflow in the iso_recv_msg function (iso.c) in rdesktop 1.5.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Remote Desktop Protocol (RDP) request with a small length field.
OSV
CVE-2008-1801: Integer underflow in the iso_recv_msg function (iso
osv·2008-05-12·CVSS 9.3
CVE-2008-1801 [CRITICAL] CVE-2008-1801: Integer underflow in the iso_recv_msg function (iso
Integer underflow in the iso_recv_msg function (iso.c) in rdesktop 1.5.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Remote Desktop Protocol (RDP) request with a small length field.
No detection rules found.
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=696http://rdesktop.cvs.sourceforge.net/rdesktop/rdesktop/iso.c?r1=1.19&r2=1.20&pathrev=HEADhttp://secunia.com/advisories/30118http://secunia.com/advisories/30248http://secunia.com/advisories/30380http://secunia.com/advisories/30713http://secunia.com/advisories/31222http://secunia.com/advisories/31224http://secunia.com/advisories/31928http://security.gentoo.org/glsa/glsa-200806-04.xmlhttp://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.395286http://sunsolve.sun.com/search/document.do?assetkey=1-26-240708-1http://support.avaya.com/elmodocs2/security/ASA-2008-360.htmhttp://www.debian.org/security/2008/dsa-1573http://www.mandriva.com/security/advisories?name=MDVSA-2008:101http://www.redhat.com/archives/fedora-package-announce/2008-May/msg00244.htmlhttp://www.redhat.com/archives/fedora-package-announce/2008-May/msg00270.htmlhttp://www.redhat.com/archives/fedora-package-announce/2008-May/msg00296.htmlhttp://www.redhat.com/support/errata/RHSA-2008-0575.htmlhttp://www.redhat.com/support/errata/RHSA-2008-0576.htmlhttp://www.redhat.com/support/errata/RHSA-2008-0725.htmlhttp://www.securityfocus.com/bid/29097http://www.securitytracker.com/id?1019990http://www.ubuntu.com/usn/usn-646-1http://www.vupen.com/english/advisories/2008/1467/referenceshttp://www.vupen.com/english/advisories/2008/2403https://exchange.xforce.ibmcloud.com/vulnerabilities/42272https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11570https://www.exploit-db.com/exploits/5561http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=696http://rdesktop.cvs.sourceforge.net/rdesktop/rdesktop/iso.c?r1=1.19&r2=1.20&pathrev=HEADhttp://secunia.com/advisories/30118http://secunia.com/advisories/30248http://secunia.com/advisories/30380http://secunia.com/advisories/30713http://secunia.com/advisories/31222http://secunia.com/advisories/31224http://secunia.com/advisories/31928http://security.gentoo.org/glsa/glsa-200806-04.xmlhttp://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.395286http://sunsolve.sun.com/search/document.do?assetkey=1-26-240708-1http://support.avaya.com/elmodocs2/security/ASA-2008-360.htmhttp://www.debian.org/security/2008/dsa-1573http://www.mandriva.com/security/advisories?name=MDVSA-2008:101http://www.redhat.com/archives/fedora-package-announce/2008-May/msg00244.htmlhttp://www.redhat.com/archives/fedora-package-announce/2008-May/msg00270.htmlhttp://www.redhat.com/archives/fedora-package-announce/2008-May/msg00296.htmlhttp://www.redhat.com/support/errata/RHSA-2008-0575.htmlhttp://www.redhat.com/support/errata/RHSA-2008-0576.htmlhttp://www.redhat.com/support/errata/RHSA-2008-0725.htmlhttp://www.securityfocus.com/bid/29097http://www.securitytracker.com/id?1019990http://www.ubuntu.com/usn/usn-646-1http://www.vupen.com/english/advisories/2008/1467/referenceshttp://www.vupen.com/english/advisories/2008/2403https://exchange.xforce.ibmcloud.com/vulnerabilities/42272https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11570https://www.exploit-db.com/exploits/5561
2008-05-12
Published