Integer signedness error in the xrealloc function (rdesktop.c) in RDesktop 1.5.0 allows remote attackers to execute arbitrary code via unknown parameters that trigger a heap-based overflow. NOTE: the role of the channel_process function was not specified by the original researcher.
References
Configurations
History
No history.
Information
Published : 2008-05-12 22:20
Updated : 2024-02-28 11:21
NVD link : CVE-2008-1803
Mitre link : CVE-2008-1803
CVE.ORG link : CVE-2008-1803
JSON object : View
Products Affected
rdesktop
- rdesktop
CWE
CWE-189
Numeric Errors