PT-2018-7227 · Apache · Guacamole
Publicado
2018-01-18
·
Atualizado
2022-05-14
·
CVE-2017-3158
CVSS v3.1
8.1
Alta
| Vetor | AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions:
Guacamole versions 0.9.5 through 0.9.10-incubating
Description:
A race condition in the terminal emulator could allow writes of blocks of printed data to overlap, causing packet data to be misread as the packet length. This could result in the remaining data being written beyond the end of a statically-allocated buffer.
Recommendations:
For Guacamole versions 0.9.5 through 0.9.10-incubating, at the moment, there is no information about a newer version that contains a fix for this issue.
Correção
Race Condition
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Guacamole