Unrated severityNVD Advisory· Published May 29, 2020· Updated Aug 4, 2024
Out-of-bounds Read in FreeRDP `ntlm_read_ntlm_v2_response`
CVE-2020-11086
Description
In FreeRDP less than or equal to 2.0.0, there is an out-of-bound read in ntlm_read_ntlm_v2_client_challenge that reads up to 28 bytes out-of-bound to an internal structure. This has been fixed in 2.1.0.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- lists.opensuse.org/opensuse-security-announce/2020-07/msg00080.htmlmitrevendor-advisory
- lists.debian.org/debian-lts-announce/2023/10/msg00008.htmlmitremailing-list
- github.com/FreeRDP/FreeRDP/commit/c098f21fdaadca57ff649eee1674f6cc321a2ec4mitre
- github.com/FreeRDP/FreeRDP/security/advisories/GHSA-fg8v-w34r-c974mitre
News mentions
0No linked articles in our index yet.