Integer underflow in the iso_recv_msg function (iso.c) in rdesktop 1.5.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Remote Desktop Protocol (RDP) request with a small length field.
Software | From | Fixed in |
---|---|---|
rdesktop / rdesktop | 1.5.0 | 1.5.0.x |