Primary

Context

RDP Manager Denial-of-Service Vulnerability

Vulnerability

A denial-of-service vulnerability has been identified in RDP Manager version 4.9.9.3. This vulnerability allows local attackers to crash the application by entering oversized data in the 'Verbindungsname' (Connection Name) and 'Server' fields. The application becomes unresponsive and may require a full reinstallation to restore functionality.

Impact

Exploitation of this vulnerability leads to a permanent application crash, causing the software to become unresponsive and require reinstallation.

Reproduction

To reproduce this vulnerability, install RDP Manager version 4.9.9.3 and add a new entry in the main tab. Enter a large amount of characters, up to 1024, in the 'Verbindungsname' and 'Server' fields, and save the entry. The application will freeze and crash, displaying multiple errors. After restarting, the application will crash permanently. Alternatively, a database backup can be exported, modified to include a malformed entry, and imported to achieve the same effect.

Added: Jan 15, 2026, 4:36 PM

Updated: Jan 15, 2026, 7:36 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

4.6

remediation

0.0

relevance

2.1

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

4.6

remediation

0.0

relevance

2.1

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

RDP Manager Denial-of-Service Vulnerability

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating