CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-1430

An issue was discovered in xrdp before 0.9.1. When successfully logging in using RDP into an xrdp session, the file ~/.vnc/sesman_${username}_passwd is created. Its content is the equivalent of the user's cleartext password, DES encrypted with a known key.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 56.8%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 5.0

References

Products affected by CVE-2013-1430

Neutrinolabs » Xrdp » Version: N/A

cpe:2.3:a:neutrinolabs:xrdp:-
Neutrinolabs » Xrdp » Version: 0.6.0

cpe:2.3:a:neutrinolabs:xrdp:0.6.0
Neutrinolabs » Xrdp » Version: 0.6.1

cpe:2.3:a:neutrinolabs:xrdp:0.6.1
Neutrinolabs » Xrdp » Version: 0.6.2

cpe:2.3:a:neutrinolabs:xrdp:0.6.2
Neutrinolabs » Xrdp » Version: 0.8.0

cpe:2.3:a:neutrinolabs:xrdp:0.8.0
Debian » Debian Linux » Version: 7.0

cpe:2.3:o:debian:debian_linux:7.0
Debian » Debian Linux » Version: 8.0

cpe:2.3:o:debian:debian_linux:8.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-1430

Products

Pricing

Contact Us