CVE-2011-0900
published 2011-02-07CVE-2011-0900: Stack-based buffer overflow in the tsc_launch_remote function (src/support.c) in Terminal Server Client (tsclient) 0.150, and possibly other versions, allows…
PriorityP336medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
5.21%
91.4th percentile
Stack-based buffer overflow in the tsc_launch_remote function (src/support.c) in Terminal Server Client (tsclient) 0.150, and possibly other versions, allows user-assisted remote attackers to execute arbitrary code via a .RDP file with a long hostname argument.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| erick_woods | terminal_server_client | — | — |
CVSS provenance
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
vendor_redhat6.8MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
ruby: Properly initialize the random number generator when forking new process
vendor_redhat·2011-07-02·CVSS 5.0
CVE-2011-2686 [MEDIUM] ruby: Properly initialize the random number generator when forking new process
ruby: Properly initialize the random number generator when forking new process
Ruby before 1.8.7-p352 does not reset the random seed upon forking, which makes it easier for context-dependent attackers to predict the values of random numbers by leveraging knowledge of the number sequence obtained in a different child process, a related issue to CVE-2003-0900. NOTE: this issue exists because of a regression during Ruby 1.8.6 development.
Package: ruby (Red Hat Enterprise Linux 4) - Affected
Package: ruby (Red Hat Enterprise Linux 5) - Affected
Package: ruby (Red Hat Enterprise Linux 6) - Affected
Red Hat
ruby: Properly initialize the random number generator when forking new process
vendor_redhat·2011-07-02·CVSS 5.0
CVE-2011-3009 [MEDIUM] ruby: Properly initialize the random number generator when forking new process
ruby: Properly initialize the random number generator when forking new process
Ruby before 1.8.6-p114 does not reset the random seed upon forking, which makes it easier for context-dependent attackers to predict the values of random numbers by leveraging knowledge of the number sequence obtained in a different child process, a related issue to CVE-2003-0900.
Statement: The Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw in Red Hat Enterprise Linux 4 and 5.
Red Hat
tsclient: multiple stack-based buffer overflows in tsc_launch_remote()
vendor_redhat·2011-02-02·CVSS 6.8
CVE-2011-0900 [MEDIUM] CWE-121 tsclient: multiple stack-based buffer overflows in tsc_launch_remote()
tsclient: multiple stack-based buffer overflows in tsc_launch_remote()
Stack-based buffer overflow in the tsc_launch_remote function (src/support.c) in Terminal Server Client (tsclient) 0.150, and possibly other versions, allows user-assisted remote attackers to execute arbitrary code via a .RDP file with a long hostname argument.
Package: tsclient (Red Hat Enterprise Linux 4) - Affected
Package: tsclient (Red Hat Enterprise Linux 5) - Affected
Package: tsclient (Red Hat Enterprise Linux 6) - Under investigation
GHSA
GHSA-5pmf-6h5c-44g9: Stack-based buffer overflow in the tsc_launch_remote function (src/support
ghsa_unreviewed·2022-05-17
CVE-2011-0900 [MEDIUM] CWE-119 GHSA-5pmf-6h5c-44g9: Stack-based buffer overflow in the tsc_launch_remote function (src/support
Stack-based buffer overflow in the tsc_launch_remote function (src/support.c) in Terminal Server Client (tsclient) 0.150, and possibly other versions, allows user-assisted remote attackers to execute arbitrary code via a .RDP file with a long hostname argument.
No detection rules found.
http://osvdb.org/70749http://secunia.com/advisories/43120http://www.exploit-db.com/exploits/16095http://www.securityfocus.com/bid/46099https://exchange.xforce.ibmcloud.com/vulnerabilities/65100http://osvdb.org/70749http://secunia.com/advisories/43120http://www.exploit-db.com/exploits/16095http://www.securityfocus.com/bid/46099https://exchange.xforce.ibmcloud.com/vulnerabilities/65100
2011-02-07
Published