Lucene search

[email protected]CVE-2007-0756

HistoryFeb 06, 2007 - 2:28 a.m.

CVE-2007-0756

2007-02-0602:28:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2007-0756

chicken of the vnc

cotv

denial of service

application crash

nvd

6.9 Medium

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.194 Low

EPSS

Percentile

96.2%

JSON

Chicken of the VNC (cotv) 2.0 allows remote attackers to cause a denial of service (application crash) via a large computer-name size value in a ServerInit packet, which triggers a failed malloc and a resulting NULL dereference.

CPENameOperatorVersion
chicken_of_the_vnc:chicken_of_the_vncchicken of the vnceq2.0

CPE	Name	Operator	Version
chicken_of_the_vnc:chicken_of_the_vnc	chicken of the vnc	eq	2.0

References

osvdb.org/33637

securityreason.com/securityalert/2220

www.securityfocus.com/archive/1/458907/100/0/threaded

www.securityfocus.com/archive/1/466966/100/0/threaded

www.securityfocus.com/bid/22372

exchange.xforce.ibmcloud.com/vulnerabilities/32166

www.exploit-db.com/exploits/3257

6.9 Medium

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.194 Low

EPSS

Percentile

96.2%

JSON

Related for CVE-2007-0756

checkpoint_advisories1 prion1