What is the severity of CVE-2018-1000852?

CVE-2018-1000852 has a moderate severity rating due to its potential to leak sensitive information.

How do I fix CVE-2018-1000852?

To fix CVE-2018-1000852, upgrade FreeRDP to version 2.3.0 or later, or apply any available patches provided by your distribution.

Which versions of FreeRDP are affected by CVE-2018-1000852?

FreeRDP versions prior to 2.3.0 and any release candidate versions from 2.0.0-rc0 to 2.0.0-rc3 are affected by CVE-2018-1000852.

Can CVE-2018-1000852 be exploited without user action?

Yes, CVE-2018-1000852 can be exploited if the RDP Client connects to an RDP server with the echo option enabled.

What impact does CVE-2018-1000852 have on systems?

Exploitation of CVE-2018-1000852 can lead to an out-of-bounds read, potentially revealing sensitive data from the client.

Vulnerability/
CVE-2018-1000852

medium

6.5

CWE

125

20/12/2018

21/11/2024

CVE-2018-1000852

First published: Thu Dec 20 2018(Updated: )

FreeRDP 2.0.0-rc3 contains an out of bounds read vulnerability in drdynvc_process_capability_request function in channels/drdynvc/client/drdynvc_main.c file. To exploit this RDPClient must connect to the rdp server with the echo option. This can lead to a two-byte outbound reading from the client memory. References: <a href="https://github.com/FreeRDP/FreeRDP/issues/4866">https://github.com/FreeRDP/FreeRDP/issues/4866</a> Upstream Patch: <a href="https://github.com/FreeRDP/FreeRDP/pull/4871/commits/baee520e3dd9be6511c45a14c5f5e77784de1471">https://github.com/FreeRDP/FreeRDP/pull/4871/commits/baee520e3dd9be6511c45a14c5f5e77784de1471</a>

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
FreeRDP	<2.0.0
FreeRDP	=2.0.0
FreeRDP	=2.0.0-rc0
FreeRDP	=2.0.0-rc1
FreeRDP	=2.0.0-rc2
Ubuntu Linux	=18.04
Ubuntu Linux	=19.10
Ubuntu Linux	=20.04
Fedora	=28
debian/freerdp2		2.3.0+dfsg1-2+deb11u1 2.3.0+dfsg1-2+deb11u3 2.10.0+dfsg1-1

Remedy

https://github.com/FreeRDP/FreeRDP/pull/4871/commits/baee520e3dd9be6511c45a14c5f5e77784de1471

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2018-1000852?
CVE-2018-1000852 has a moderate severity rating due to its potential to leak sensitive information.
How do I fix CVE-2018-1000852?
To fix CVE-2018-1000852, upgrade FreeRDP to version 2.3.0 or later, or apply any available patches provided by your distribution.
Which versions of FreeRDP are affected by CVE-2018-1000852?
FreeRDP versions prior to 2.3.0 and any release candidate versions from 2.0.0-rc0 to 2.0.0-rc3 are affected by CVE-2018-1000852.
Can CVE-2018-1000852 be exploited without user action?
Yes, CVE-2018-1000852 can be exploited if the RDP Client connects to an RDP server with the echo option enabled.
What impact does CVE-2018-1000852 have on systems?
Exploitation of CVE-2018-1000852 can lead to an out-of-bounds read, potentially revealing sensitive data from the client.

agent/type
collector/launchpad-cve
source/Launchpad
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2018-1000852
agent/severity
agent/weakness
collector/mitre-cve
source/MITRE
collector/usn-cve
source/Ubuntu
agent/references
agent/remedy
agent/description
agent/first-publish-date
agent/event
agent/last-modified-date
agent/trending
agent/source
agent/author
collector/nvd-cve
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
collector/nvd-index
agent/tags
collector/security-tracker-debian
source/Debian
agent/softwarecombine
vendor/freerdp
canonical/freerdp
version/freerdp/2.0.0
version/freerdp/2.0.0-rc0
version/freerdp/2.0.0-rc1
version/freerdp/2.0.0-rc2
vendor/canonical
canonical/ubuntu linux
version/ubuntu linux/18.04
version/ubuntu linux/19.10
version/ubuntu linux/20.04
vendor/fedoraproject
canonical/fedora
version/fedora/28
package-manager/debian