Primary

Context

xrdp Heap-Based Buffer Overflow Vulnerability in Logon Processing

Vulnerability

Patched

A heap-based buffer overflow vulnerability has been identified in xrdp, an open-source RDP server, in versions prior to 0.10.6. The vulnerability arises in the logon processing, specifically when the 'domain_user_separator' is configured in 'xrdp.ini'. In such cases, an unauthenticated remote attacker can send a crafted, excessively long username and domain name, leading to the overflow of an internal buffer. This overflow can corrupt adjacent memory regions, potentially causing a denial-of-service condition or unexpected behavior. Notably, the 'domain_name_separator' directive is commented out by default, so systems are only affected if this configuration is intentionally applied.

Impact

Exploitation of this vulnerability can cause a heap-based buffer overflow, allowing for memory corruption that could lead to a denial-of-service condition or unpredictable application behavior.

Remediation

Users can upgrade to xrdp version 0.10.6 to address this vulnerability.

Added: Apr 17, 2026, 8:29 PM

Updated: Apr 17, 2026, 8:29 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

3.1

exploitability

7.8

remediation

7.7

relevance

6.1

threat

0.0

urgency

2.9

incentive

8.3

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

3.1

exploitability

7.8

remediation

7.7

relevance

6.1

threat

0.0

urgency

2.9

incentive

8.3

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

xrdp Heap-Based Buffer Overflow Vulnerability in Logon Processing

Vulnerability

Impact

Remediation

Affected Products

xrdp

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating