← back
CVE-2008-5405

CVE-2008-5405

50Vexday Risk Score

Patch soon. It has a working public exploit.

ssvc Attendepss 47%
from disclosure to weapon0 days
Published on NVDDec 9
1st PoCDec 3
metasploitNov 30
exploitation probability
47%top 1% of all CVEs
observed exploitation
nono source reports it
4 public exploit(s)
Stack-based buffer overflow in the RDP protocol password decoder in Cain & Abel 4.9.23 and 4.9.24, and possibly earlier, allows remote attackers to execute arbitrary code via an RDP file containing a long string.
Affected products
n/a · n/a
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.