On Fri, Jul 3, 2020, 13:55 Daniel Moscovitch <[email protected]> wrote:
> Hi Mike, > Would the recent CVE's be able to affect a guacserver that did not have > the guacsnd.so and guaccdr.so linked in? (ie no sound and redirection > functional)? No, you would need sound, drive, printing, or audio input enabled. If you cannot upgrade, removing those should be sufficient. You would also need to have a compromised/malicious RDP server, so this would mainly be of concern for those that provide access to untrusted servers or those whose users are administrators on those servers. - Mike
