SECURITY BLOG SECURITY DASHBOARD PARTNERS PRODUCTS SERVICES COMPANY HOME

Security Dashboard | US-CERTs | CNet | SecurityFocus | Advisories | Exploits | Threats | Vulnerabilities | Risks

Network Security Consulting Advisories Article

rdesktop Disk Redirection Directory Traversal Vulnerability

http://www.securityfocus.com/bid/47419

Security Info

Bugtraq ID:	47419
Class:	Input Validation Error
CVE:	CVE-2011-1595
Remote:	Yes
Local:	No
Published:	Apr 19 2011 12:00AM
Updated:	Apr 22 2011 06:14AM
Credit:	Noam Rathaus
Vulnerable:	Slackware Linux 13.1 x86_64 Slackware Linux 13.1 Slackware Linux 13.0 x86_64 Slackware Linux 13.0 Slackware Linux 12.2 Slackware Linux 12.1 Slackware Linux 12.0 Slackware Linux 11.0 rdesktop rdesktop 1.6.9 rdesktop rdesktop 1.5

Not Vulnerable:	rdesktop rdesktop 1.7

Security Discussion

rdesktop is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input.

Exploiting this issue will allow an attacker to view arbitrary local files within the context of the webserver. Information harvested may aid in launching further attacks.

rdesktop prior to 1.7.0 are vulnerable.

Proof of Concept and Security Exploits

An attacker can exploit this issue with a web browser.

Security Solution(s)

Solution:
Updates are available. Please see the references for more information.

Slackware Linux 13.0 x86_64

Slackware rdesktop-1.6.0-x86_64-2_slack13.0.txz
ftp://ftp.slackware.com/pub/slackware/slackware64-13.0/patches/packages/rdesktop-1.6.0-x86_64-2_slack13.0.txz

Slackware Linux 12.1

Slackware rdesktop-1.6.0-i486-2_slack12.1.tgz
ftp://ftp.slackware.com/pub/slackware/slackware-12.1/patches/packages/rdesktop-1.6.0-i486-2_slack12.1.tgz

Slackware Linux 12.0

Slackware rdesktop-1.6.0-i486-2_slack12.0.tgz
ftp://ftp.slackware.com/pub/slackware/slackware-12.0/patches/packages/rdesktop-1.6.0-i486-2_slack12.0.tgz

Slackware Linux 13.1 x86_64

Slackware rdesktop-1.6.0-x86_64-2_slack13.1.txz
ftp://ftp.slackware.com/pub/slackware/slackware64-13.1/patches/packages/rdesktop-1.6.0-x86_64-2_slack13.1.txz

Slackware Linux 11.0

Slackware rdesktop-1.6.0-i486-2_slack11.0.tgz
ftp://ftp.slackware.com/pub/slackware/slackware-11.0/patches/packages/rdesktop-1.6.0-i486-2_slack11.0.tgz

Slackware Linux 13.1

Slackware rdesktop-1.6.0-i486-2_slack13.1.txz
ftp://ftp.slackware.com/pub/slackware/slackware-13.1/patches/packages/rdesktop-1.6.0-i486-2_slack13.1.txz

Slackware Linux 13.0

Slackware rdesktop-1.6.0-i486-2_slack13.0.txz
ftp://ftp.slackware.com/pub/slackware/slackware-13.0/patches/packages/rdesktop-1.6.0-i486-2_slack13.0.txz

Slackware Linux 12.2

Slackware rdesktop-1.6.0-i486-2_slack12.2.tgz
ftp://ftp.slackware.com/pub/slackware/slackware-12.2/patches/packages/rdesktop-1.6.0-i486-2_slack12.2.tgz

Security References(s)

References:

[rdesktop-announce] rdesktop 1.7.0 released (rdesktop)
SCM Repositories - rdesktop (rdesktop)

Emagined Security Blog featuring Dr. Eugene Schultz

Site Updated February 22, 2012
©2000-2012 Emagined Security
All Rights Reserved

Secure Web Programming
by Vizual Services