thr3ads.net - Secure testing team - [Secure-testing-team] Bug#613204: Two security issues [Feb 2011]

If this information is useful, please help other people find it:
Share via:

Twitter
Facebook
Email

Moritz Muehlenhoff

2011-Feb-13 14:02 UTC

[Secure-testing-team] Bug#613204: Two security issues

Package: tsclient
Severity: grave
Tags: security

Please see 
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0900
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0901

Since these attacks require someone into opening a malformed
RDP file, I don''t think these warrant a DSA. They could still
be fixed through a point release.

Cheers,
        Moritz

-- System Information:
Debian Release: 6.0
  APT prefers unstable
  APT policy: (500, ''unstable'')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.32-5-amd64 (SMP w/2 CPU cores)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Secure testing team - Feb 2011 - Bug#613204: Two security issues

[Secure-testing-team] Bug#613204: Two security issues