CVE-2017-2837

Sažetak

An exploitable denial of service vulnerability exists within the handling of security data in FreeRDP 2.0.0-beta1+android11. A specially crafted challenge packet can cause the program termination leading to a denial of service condition. An attacker can compromise the server or use man in the middle to trigger this vulnerability.

Reference

https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0339
https://www.debian.org/security/2017/dsa-3923
http://www.securityfocus.com/bid/99942

CVSS

Base:	4.3
Impact:	2.9
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	PARTIAL

CVSS vektor

AV:N/AC:M/Au:N/C:N/I:N/A:P

Zadnje važnije ažuriranje

03-06-2022 - 20:01

Objavljeno

24-04-2018 - 19:29