UBUNTU-CVE-2020-4044

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/CVE-2020-4044

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2020/UBUNTU-CVE-2020-4044.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2020-4044

Related

Published

2020-06-30T16:15:00Z

Modified

2025-01-13T10:22:09Z

Severity

7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

The xrdp-sesman service before version 0.9.13.1 can be crashed by connecting over port 3350 and supplying a malicious payload. Once the xrdp-sesman process is dead, an unprivileged attacker on the server could then proceed to start their own imposter sesman service listening on port 3350. This will allow them to capture any user credentials that are submitted to XRDP and approve or reject arbitrary login credentials. For xorgxrdp sessions in particular, this allows an unauthorized user to hijack an existing session. This is a buffer overflow attack, so there may be a risk of arbitrary code execution as well.

References

Affected packages

Ubuntu:Pro:14.04:LTS / xrdp

Package

Name: xrdp
Purl: pkg:deb/ubuntu/xrdp@0.6.0-1ubuntu0.1+esm2?arch=source&distro=trusty/esm

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.6.0-1ubuntu0.1+esm2

Affected versions

0.*

0.6.0-1

0.6.0-1ubuntu0.1

0.6.0-1ubuntu0.1+esm1

Ecosystem specific

{
    "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
    "ubuntu_priority": "medium",
    "binaries": [
        {
            "binary_version": "0.6.0-1ubuntu0.1+esm2",
            "binary_name": "xrdp"
        },
        {
            "binary_version": "0.6.0-1ubuntu0.1+esm2",
            "binary_name": "xrdp-dbgsym"
        }
    ]
}

Ubuntu:Pro:16.04:LTS / xrdp

Package

Name: xrdp
Purl: pkg:deb/ubuntu/xrdp@0.6.1-2ubuntu0.3+esm2?arch=source&distro=esm-apps/xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.6.1-2ubuntu0.3+esm2

Affected versions

0.*

0.6.1-2

0.6.1-2ubuntu0.1

0.6.1-2ubuntu0.3

0.6.1-2ubuntu0.3+esm1

Ecosystem specific

{
    "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
    "ubuntu_priority": "medium",
    "binaries": [
        {
            "binary_version": "0.6.1-2ubuntu0.3+esm2",
            "binary_name": "xrdp"
        },
        {
            "binary_version": "0.6.1-2ubuntu0.3+esm2",
            "binary_name": "xrdp-dbgsym"
        }
    ]
}

Ubuntu:Pro:18.04:LTS / xrdp

Package

Name: xrdp
Purl: pkg:deb/ubuntu/xrdp@0.9.5-2ubuntu0.1~esm1?arch=source&distro=esm-apps/bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.9.5-2ubuntu0.1~esm1

Affected versions

0.*

0.9.1-9

0.9.4-1

0.9.4-2

0.9.4-3

0.9.4-4

0.9.4-5

0.9.5-1

0.9.5-1build1

0.9.5-2

Ecosystem specific

{
    "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
    "ubuntu_priority": "medium",
    "binaries": [
        {
            "binary_version": "0.9.5-2ubuntu0.1~esm1",
            "binary_name": "xorgxrdp"
        },
        {
            "binary_version": "0.9.5-2ubuntu0.1~esm1",
            "binary_name": "xorgxrdp-dbgsym"
        },
        {
            "binary_version": "0.9.5-2ubuntu0.1~esm1",
            "binary_name": "xrdp"
        },
        {
            "binary_version": "0.9.5-2ubuntu0.1~esm1",
            "binary_name": "xrdp-dbgsym"
        },
        {
            "binary_version": "0.9.5-2ubuntu0.1~esm1",
            "binary_name": "xrdp-pulseaudio-installer"
        }
    ]
}

Ubuntu:20.04:LTS / xrdp

Package

Name: xrdp
Purl: pkg:deb/ubuntu/xrdp@0.9.12-1ubuntu0.1?arch=source&distro=focal

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.9.12-1ubuntu0.1

Affected versions

0.*

0.9.9-1

0.9.12-1

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "medium",
    "binaries": [
        {
            "binary_version": "0.9.12-1ubuntu0.1",
            "binary_name": "xrdp"
        },
        {
            "binary_version": "0.9.12-1ubuntu0.1",
            "binary_name": "xrdp-dbgsym"
        }
    ]
}