ConnectWise ManagedITSync integration through 2017 for Kaseya VSA is vulnerable to unauthenticated remote commands that allow full direct access to the Kaseya VSA database. In February 2019, attackers have actively exploited this in the...
IBM BigFix Compliance 1.7 through 1.9.91 (TEMA SUAv1 SCA SCM) is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim’s Web browser...
IBM BigFix Compliance 1.7 through 1.9.91 (TEMA SUAv1 SCA SCM) does not validate, or incorrectly validates, a certificate.This weakness might allow an attacker to spoof a trusted entity by using a man-in-the-middle (MITM) attack....
IBM BigFix Compliance 1.7 through 1.9.91 (TEMA SUAv1 SCA SCM) stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer...
IBM BigFix Compliance 1.7 through 1.9.91 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. IBM X-Force ID: 123429. Date published : 2019-02-05 https://www-01.ibm.com/support/docview.wss?uid=ibm10737581 https://exchange.xforce.ibmcloud.com/vulnerabilities/123429
rdesktop versions up to and including v1.8.3 contain a Heap-Based Buffer Overflow in function ui_clip_handle_data() that results in a memory corruption and probably even a remote code execution. Date published : 2019-02-05 http://www.securityfocus.com/bid/106938 https://research.checkpoint.com/reverse-rdp-attack-code-execution-on-rdp-clients/
rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function process_secondary_order() that results in a Denial of Service (segfault). Date published : 2019-02-05 http://www.securityfocus.com/bid/106938 https://research.checkpoint.com/reverse-rdp-attack-code-execution-on-rdp-clients/
rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function rdpsnd_process_ping() that results in an information leak. Date published : 2019-02-05 http://www.securityfocus.com/bid/106938 https://research.checkpoint.com/reverse-rdp-attack-code-execution-on-rdp-clients/
rdesktop versions up to and including v1.8.3 contain a Heap-Based Buffer Overflow in function process_plane() that results in a memory corruption and probably even a remote code execution. Date published : 2019-02-05 http://www.securityfocus.com/bid/106938 https://research.checkpoint.com/reverse-rdp-attack-code-execution-on-rdp-clients/
rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function process_bitmap_updates() that results in a Denial of Service (segfault). Date published : 2019-02-05 http://www.securityfocus.com/bid/106938 https://research.checkpoint.com/reverse-rdp-attack-code-execution-on-rdp-clients/
rdesktop versions up to and including v1.8.3 contain an Integer Overflow that leads to a Heap-Based Buffer Overflow in function process_bitmap_updates() and results in a memory corruption and probably even a remote code execution....
rdesktop versions up to and including v1.8.3 contain an Integer Overflow that leads to an Out-Of-Bounds Write in function process_bitmap_updates() and results in a memory corruption and possibly even a remote code execution. Date...
rdesktop versions up to and including v1.8.3 contain a Heap-Based Buffer Overflow in function cssp_read_tsrequest() that results in a memory corruption and probably even a remote code execution. Date published : 2019-02-05 http://www.securityfocus.com/bid/106938 https://research.checkpoint.com/reverse-rdp-attack-code-execution-on-rdp-clients/
rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function cssp_read_tsrequest() that results in a Denial of Service (segfault). Date published : 2019-02-05 http://www.securityfocus.com/bid/106938 https://research.checkpoint.com/reverse-rdp-attack-code-execution-on-rdp-clients/