CVE-2018-8786

Summary

FreeRDP prior to version 2.0.0-rc4 contains an Integer Truncation that leads to a Heap-Based Buffer Overflow in function update_read_bitmap_update() and results in a memory corruption and probably even a remote code execution.

Affected Software

VendorProductVersion RangeStatus
Check Point Software Technologies Ltd.FreeRDPAll versions prior to 2.0.0-rc4affected

Weaknesses

  • CWE-680: CWE-680: Integer Overflow to Buffer Overflow

ADP Enrichment

CVE Program Container

Additional References

References