CVE-2008-1802

Name of the Vulnerable Software and Affected Versions rdesktop versions prior to 1.6.0

Description The issue affects the rdesktop package in Gentoo Linux and Debian GNU/Linux operating systems, allowing remote exploitation that may lead to breaches in confidentiality, integrity, and availability of protected information. A buffer overflow in the process redirect pdu function in rdp.c can be triggered by a Remote Desktop Protocol (RDP) redirect request with modified length fields, potentially enabling remote attackers to execute arbitrary code.

Recommendations For versions prior to 1.6.0, update to version 1.6.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the process redirect pdu function in rdp.c until a patch is available. Avoid using the RDP protocol with untrusted connections until the issue is resolved.