Xrdp : Security Vulnerabilities, CVEs, CVSS score >= 7
The rdp_rdp_process_color_pointer_pdu function in rdp/rdp_rdp.c in xrdp 0.4.1 and earlier allows remote RDP servers to have an unknown impact via input data that sets crafted values for certain length variables, leading to a buffer overflow.
Max CVSS
7.5
EPSS Score
0.64%
Published
2009-01-15
Updated
2017-08-08
Array index error in the xrdp_bitmap_def_proc function in xrdp/funcs.c in xrdp 0.4.1 and earlier allows remote attackers to execute arbitrary code via vectors that manipulate the value of the edit_pos structure member.
Max CVSS
7.5
EPSS Score
12.20%
Published
2009-01-15
Updated
2017-08-08
Buffer overflow in the xrdp_bitmap_invalidate function in xrdp/xrdp_bitmap.c in xrdp 0.4.1 and earlier allows remote attackers to execute arbitrary code via a crafted request.
Max CVSS
7.5
EPSS Score
3.20%
Published
2009-01-15
Updated
2009-02-10
3 vulnerabilities found