Detections
Analytics
NewStart CGSL CORE 5.04 / MAIN 5.04 : freerdp Vulnerability (NS-SA-2019-0204)
medium Nessus Plugin ID 129918
Language:
Synopsis
The remote machine is affected by a vulnerability.Description
The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has freerdp packages installed that are affected by a vulnerability:- FreeRDP FreeRDP 2.0.0-rc3 released version before commit 205c612820dac644d665b5bb1cdf437dc5ca01e3 contains a Other/Unknown vulnerability in channels/drdynvc/client/drdynvc_main.c, drdynvc_process_capability_request that can result in The RDP server can read the client's memory.. This attack appear to be exploitable via RDPClient must connect the rdp server with echo option. This vulnerability appears to have been fixed in after commit 205c612820dac644d665b5bb1cdf437dc5ca01e3.
(CVE-2018-1000852)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.
Solution
Upgrade the vulnerable CGSL freerdp packages. Note that updated packages may not be available yet. Please contact ZTE for more information.See Also
Plugin Details
Severity: Medium
ID: 129918
File Name: newstart_cgsl_NS-SA-2019-0204_freerdp.nasl
Version: 1.6
Type: local
Published: 10/15/2019
Updated: 4/18/2024
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Low
Score: 3.3
CVSS v2
Risk Factor: Medium
Base Score: 6.4
Temporal Score: 5
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:P
CVSS Score Source: CVE-2018-1000852
CVSS v3
Risk Factor: Medium
Base Score: 6.5
Temporal Score: 5.9
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C
Vulnerability Information
Required KB Items: Host/local_checks_enabled, Host/cpu, Host/ZTE-CGSL/release, Host/ZTE-CGSL/rpm-list
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 10/14/2019
Vulnerability Publication Date: 12/20/2018
Reference Information
CVE: CVE-2018-1000852