CVE-2011-0901

Multiple stack-based buffer overflows in the tsc_launch_remote function (src/support.c) in Terminal Server Client (tsclient) 0.150, and possibly other versions, allow user-assisted remote attackers to execute arbitrary code via a .RDP file with a long (1) username, (2) password, or (3) domain argument.  NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 90%
VendorProductVersion
erick_woodsterminal_server_client
0.150
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
tsclient
raring
dne
quantal
dne
precise
dne
oneiric
dne
natty
ignored
maverick
ignored
lucid
ignored
karmic
ignored
hardy
ignored
dapper
ignored
Common Weakness Enumeration
References
http://osvdb.org/70749
http://secunia.com/advisories/43120
https://exchange.xforce.ibmcloud.com/vulnerabilities/65101
https://exchange.xforce.ibmcloud.com/vulnerabilities/65102
https://exchange.xforce.ibmcloud.com/vulnerabilities/65103
http://osvdb.org/70749
http://secunia.com/advisories/43120
https://exchange.xforce.ibmcloud.com/vulnerabilities/65101
https://exchange.xforce.ibmcloud.com/vulnerabilities/65102
https://exchange.xforce.ibmcloud.com/vulnerabilities/65103