VDB
CVE-2011-0901
CVE-2011-0901
PUBLISHED
CVSS 6.800000190734863 MEDIUM
Multiple stack-based buffer overflows in the tsc_launch_remote function (src/support.c) in Terminal Server Client (tsclient) 0.150, and possibly other versions, allow user-assisted remote attackers to execute arbitrary code via a .RDP file with a long (1) username, (2) password, or (3) domain argument. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
EPSS 12.36% · 94.0th percentile
Risk Scores
CVSS 2.0
6.800000190734863
EPSS Score
12.36%
94.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| erick_woods | terminal_server_client | 0.150 |
Timeline
- Feb 7, 2011 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Sep 7, 2023 EPSS Score
- Sep 28, 2023 EPSS Score
References
- terminal-server-username-bo(65101) vdb
- 43120 third-party-advisory
- 70749 vdb
- terminal-server-domain-bo(65103) vdb
- terminal-server-password-bo(65102) vdb
- https://nvd.nist.gov/vuln/detail/CVE-2011-0901 advisory