Microsoft Windows Terminal Services Advanced Client (TSAC) contains a remotely exploitable buffer overflow.
The Microsoft Windows Terminal Services Advanced Client (TSAC) contains a remotely exploitable buffer overflow. This ActiveX control provides a way to deliver Terminal Services to a client using only a browser. This ActiveX control contains a buffer overflow in the code that processes input parameters.
A remote attacker can execute arbitrary code on a vulnerable system with the privileges of the victim.
Apply a patch.
This vulnerability was discovered by Ollie Whitehouse, of @Stake.
This document was written by Ian A Finlay.
|Date First Published:||2002-08-27|
|Date Last Updated:||2002-08-27 18:33 UTC|