Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
xrdp 0.9.1 calls the PAM function auth_start_session() in an incorrect location, leading to PAM session modules not being properly initialized, with a potential consequence of incorrect configurations or elevation of privileges, aka a pam_limits.so bypass.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
xrdp 安全漏洞
Vulnerability Description
xrdp是软件开发者Jay Sorg所研发的一款开源的远程桌面协议(RDP)服务器。 xrdp 0.9.1版本中存在安全漏洞,该漏洞源于PAM会话模块没有正确初始化。攻击者可利用该漏洞造成配置错误,提升权限。
CVSS Information
N/A
Vulnerability Type
N/A