cpe:/a:oxid:cain_and_abel:4.9.23 cpe:/a:oxid:cain_and_abel:4.9.24 CVE-2008-5405 2008-12-10T01:44:42.173-05:00 2017-09-28T21:32:37.260-04:00 9.3 NETWORK MEDIUM NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2008-12-10T12:45:00.000-05:00 ALLOWS_ADMIN_ACCESS BID 32543 SECUNIA 32794 SREASON 4703 OSVDB 50342 EXPLOIT-DB 7297 EXPLOIT-DB 7309 VUPEN ADV-2008-3286 XF cainabel-rdp-bo(46940) CONFIRM http://oxid.netsons.org/phpBB2/viewtopic.php?t=2750 Stack-based buffer overflow in the RDP protocol password decoder in Cain & Abel 4.9.23 and 4.9.24, and possibly earlier, allows remote attackers to execute arbitrary code via an RDP file containing a long string.