CVE-2011-0900

Name of the Vulnerable Software and Affected Versions Terminal Server Client (tsclient) versions 0.150 and possibly other versions

Description The issue is a stack-based buffer overflow in the tsc launch remote function, located in the src/support.c file. This allows user-assisted remote attackers to execute arbitrary code via a .RDP file with a long hostname argument.

Recommendations For version 0.150, update to a version that fixes the stack-based buffer overflow issue in the tsc launch remote function. At the moment, there is no information about a newer version that contains a fix for this vulnerability.