漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
FreeRDP has a heap-buffer-overflow in drive_process_irp_read
Vulnerability Description
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap-buffer-overflow occurs in drive read when a server-controlled read length is used to read file data into an IRP output stream buffer without a hard upper bound, allowing an oversized read to overwrite heap memory. This vulnerability is fixed in 3.20.1.
CVSS Information
N/A
Vulnerability Type
堆缓冲区溢出
Vulnerability Title
FreeRDP 安全漏洞
Vulnerability Description
FreeRDP是FreeRDP团队的一款开源的远程桌面协议(RDP)的实现。 FreeRDP 3.20.1之前版本存在安全漏洞,该漏洞源于驱动器读取时,服务器控制的读取长度用于将文件数据读入IRP输出流缓冲区而无硬性上限,可能导致超大读取覆盖堆内存。
CVSS Information
N/A
Vulnerability Type
N/A