rpm package
suse/vinagre&distro=SUSE Linux Enterprise Workstation Extension 12 SP5
pkg:rpm/suse/vinagre&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP5
Vulnerabilities (46)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2017-2838 | Med | 5.9 | < 3.20.2-16.3.3 | 3.20.2-16.3.3 | Apr 24, 2018 | An exploitable denial of service vulnerability exists within the handling of challenge packets in FreeRDP 2.0.0-beta1+android11. A specially crafted challenge packet can cause the program termination leading to a denial of service condition. An attacker can compromise the server | |
| CVE-2017-2837 | Med | 5.9 | < 3.20.2-16.3.3 | 3.20.2-16.3.3 | Apr 24, 2018 | An exploitable denial of service vulnerability exists within the handling of security data in FreeRDP 2.0.0-beta1+android11. A specially crafted challenge packet can cause the program termination leading to a denial of service condition. An attacker can compromise the server or u | |
| CVE-2017-2836 | Med | 5.9 | < 3.20.2-16.3.3 | 3.20.2-16.3.3 | Apr 24, 2018 | An exploitable denial of service vulnerability exists within the reading of proprietary server certificates in FreeRDP 2.0.0-beta1+android11. A specially crafted challenge packet can cause the program termination leading to a denial of service condition. An attacker can compromis | |
| CVE-2017-2835 | Hig | 8.1 | < 3.20.2-16.3.3 | 3.20.2-16.3.3 | Apr 24, 2018 | An exploitable code execution vulnerability exists in the RDP receive functionality of FreeRDP 2.0.0-beta1+android11. A specially crafted server response can cause an out-of-bounds write resulting in an exploitable condition. An attacker can compromise the server or use a man in | |
| CVE-2017-2834 | Hig | 7.0 | < 3.20.2-16.3.3 | 3.20.2-16.3.3 | Apr 24, 2018 | An exploitable code execution vulnerability exists in the authentication functionality of FreeRDP 2.0.0-beta1+android11. A specially crafted server response can cause an out-of-bounds write resulting in an exploitable condition. An attacker can compromise the server or use a man | |
| CVE-2018-0886 | Hig | 7.0 | < 3.20.2-16.3.3 | 3.20.2-16.3.3 | Mar 14, 2018 | The Credential Security Support Provider protocol (CredSSP) in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709 Windows Server 2016 and Windows Server, version 1709 allows |
- affected < 3.20.2-16.3.3fixed 3.20.2-16.3.3
An exploitable denial of service vulnerability exists within the handling of challenge packets in FreeRDP 2.0.0-beta1+android11. A specially crafted challenge packet can cause the program termination leading to a denial of service condition. An attacker can compromise the server
- affected < 3.20.2-16.3.3fixed 3.20.2-16.3.3
An exploitable denial of service vulnerability exists within the handling of security data in FreeRDP 2.0.0-beta1+android11. A specially crafted challenge packet can cause the program termination leading to a denial of service condition. An attacker can compromise the server or u
- affected < 3.20.2-16.3.3fixed 3.20.2-16.3.3
An exploitable denial of service vulnerability exists within the reading of proprietary server certificates in FreeRDP 2.0.0-beta1+android11. A specially crafted challenge packet can cause the program termination leading to a denial of service condition. An attacker can compromis
- affected < 3.20.2-16.3.3fixed 3.20.2-16.3.3
An exploitable code execution vulnerability exists in the RDP receive functionality of FreeRDP 2.0.0-beta1+android11. A specially crafted server response can cause an out-of-bounds write resulting in an exploitable condition. An attacker can compromise the server or use a man in
- affected < 3.20.2-16.3.3fixed 3.20.2-16.3.3
An exploitable code execution vulnerability exists in the authentication functionality of FreeRDP 2.0.0-beta1+android11. A specially crafted server response can cause an out-of-bounds write resulting in an exploitable condition. An attacker can compromise the server or use a man
- affected < 3.20.2-16.3.3fixed 3.20.2-16.3.3
The Credential Security Support Provider protocol (CredSSP) in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709 Windows Server 2016 and Windows Server, version 1709 allows
Page 3 of 3