cve/CVE-2024-39917.md at main

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-11-28 18:48:49 +00:00

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

1.1 KiB

Raw Permalink Blame History

CVE-2024-39917

Description

xrdp is an open source RDP server. xrdp versions prior to 0.10.0 have a vulnerability that allows attackers to make an infinite number of login attempts. The number of max login attempts is supposed to be limited by a configuration parameter MaxLoginRetry in /etc/xrdp/sesman.ini. However, this mechanism was not effectively working. As a result, xrdp allows an infinite number of login attempts.

POC

Reference

No PoCs from references.

Github

https://github.com/EsselKobby/Virtual_Infosec_Africa_LAB
https://github.com/w4zu/Debian_security

1.1 KiB Raw Permalink Blame History

CVE-2024-39917

Description

POC

Reference

Github

1.1 KiB

Raw Permalink Blame History