VDB

CVE-2020-15103

CVE-2020-15103 PUBLISHED

In FreeRDP less than or equal to 2.1.2, an integer overflow exists due to missing input sanitation in rdpegfx channel. All FreeRDP clients are affected. The input rectangles from the server are not checked against local surface coordinates and blindly accepted. A malicious server can send data that will crash the client later on (invalid length arguments to a `memcpy`) This has been fixed in 2.2.0. As a workaround, stop using command line arguments /gfx, /gfx-h264 and /network:auto

EPSS 0.26% · 49.5th percentile

Risk Scores

EPSS Score
0.26%
49.5th percentile

Affected Products

VendorProductVersions
Ubuntu:18.04:LTSfreerdp22.0.0~git20170725.1.1648deb+dfsg1-1, 2.0.0~git20170725.1.1648deb+dfsg1-5ubuntu1, 2.0.0~git20170725.1.1648deb+dfsg1-5ubuntu2
Ubuntu:16.04:LTSfreerdp1.1.0~git20140921.1.440916e+dfsg1-5ubuntu1, 1.1.0~git20140921.1.440916e+dfsg1-5ubuntu1.2, 1.1.0~git20140921.1.440916e+dfsg1-5ubuntu1.4
Ubuntu:20.04:LTSfreerdp2*, 2.0.0~git20190204.1.2693389a+dfsg1-1, 2.1.1+dfsg1-0ubuntu0.20.04.1
Ubuntu:18.04:LTSfreerdp1.1.0~git20140921.1.440916e+dfsg1-15ubuntu1.18.04.1, 1.1.0~git20140921.1.440916e+dfsg1-15ubuntu1, 0

Exploit Intelligence

Timeline

  • Jul 27, 2020 CVE Published
  • Apr 14, 2021 EPSS Score
  • Jun 23, 2021 EPSS Score
  • Aug 24, 2021 EPSS Score
  • Dec 27, 2021 EPSS Score
  • Jan 6, 2022 EPSS Score
  • Feb 4, 2022 EPSS Score
  • Feb 28, 2022 EPSS Score
  • Apr 1, 2022 EPSS Score
  • Jul 3, 2022 EPSS Score
  • Sep 4, 2022 EPSS Score
  • Nov 6, 2022 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›