{"id":"CVE-2017-16927","details":"The scp_v0s_accept function in sesman/libscp/libscp_v0.c in the session manager in xrdp through 0.9.4 uses an untrusted integer as a write length, which allows local users to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted input stream.","modified":"2026-04-16T06:16:42.879266226Z","published":"2017-11-23T06:29:00.210Z","related":["SUSE-SU-2019:1847-1","SUSE-SU-2019:1860-1","openSUSE-SU-2024:11526-1"],"references":[{"type":"WEB","url":"https://groups.google.com/forum/#%21topic/xrdp-devel/PmVfMuy_xBA"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2017/12/msg00005.html"},{"type":"FIX","url":"https://github.com/neutrinolabs/xrdp/pull/958"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/neutrinolabs/xrdp","events":[{"introduced":"0"},{"last_affected":"c295dd61b882e8b56677cf12791f43634f9190b5"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"0.9.4"}]}}],"versions":["v0.9.2","v0.9.3","v0.9.3.rc1","v0.9.4","v0.9.4.rc1"],"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"7.0"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-16927.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}