Lucene search

K
cve[email protected]CVE-2013-5745
HistoryOct 01, 2013 - 5:55 p.m.

CVE-2013-5745

2013-10-0117:55:03
CWE-20
web.nvd.nist.gov
51
vino-server.c
gnome vino
cve-2013-5745
denial of service
remote attackers

CVSS2

7.1

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

AI Score

6.2

Confidence

Low

EPSS

0.763

Percentile

98.2%

The vino_server_client_data_pending function in vino-server.c in GNOME Vino 2.26.1, 2.32.1, 3.7.3, and earlier, and 3.8 when encryption is disabled, does not properly clear client data when an error causes the connection to close during authentication, which allows remote attackers to cause a denial of service (infinite loop, CPU and disk consumption) via multiple crafted requests during authentication.

Affected configurations

NVD
Node
david_kingvinoRange3.7.3
OR
david_kingvinoMatch0.12
OR
david_kingvinoMatch0.14
OR
david_kingvinoMatch2.7
OR
david_kingvinoMatch2.7.3
OR
david_kingvinoMatch2.7.3.1
OR
david_kingvinoMatch2.7.4
OR
david_kingvinoMatch2.7.4.90
OR
david_kingvinoMatch2.7.4.91
OR
david_kingvinoMatch2.7.90
OR
david_kingvinoMatch2.7.91
OR
david_kingvinoMatch2.7.92
OR
david_kingvinoMatch2.8
OR
david_kingvinoMatch2.8.0
OR
david_kingvinoMatch2.8.0.1
OR
david_kingvinoMatch2.8.1
OR
david_kingvinoMatch2.9
OR
david_kingvinoMatch2.9.2
OR
david_kingvinoMatch2.10
OR
david_kingvinoMatch2.11
OR
david_kingvinoMatch2.11.1
OR
david_kingvinoMatch2.11.1.1
OR
david_kingvinoMatch2.11.1.2
OR
david_kingvinoMatch2.11.90
OR
david_kingvinoMatch2.11.92
OR
david_kingvinoMatch2.12
OR
david_kingvinoMatch2.13
OR
david_kingvinoMatch2.13.5
OR
david_kingvinoMatch2.14
OR
david_kingvinoMatch2.15
OR
david_kingvinoMatch2.16
OR
david_kingvinoMatch2.17
OR
david_kingvinoMatch2.17.2
OR
david_kingvinoMatch2.17.4
OR
david_kingvinoMatch2.17.5
OR
david_kingvinoMatch2.17.92
OR
david_kingvinoMatch2.18
OR
david_kingvinoMatch2.18.1
OR
david_kingvinoMatch2.19
OR
david_kingvinoMatch2.19.5
OR
david_kingvinoMatch2.19.90
OR
david_kingvinoMatch2.19.92
OR
david_kingvinoMatch2.20
OR
david_kingvinoMatch2.20.1
OR
david_kingvinoMatch2.21
OR
david_kingvinoMatch2.21.1
OR
david_kingvinoMatch2.21.2
OR
david_kingvinoMatch2.21.3
OR
david_kingvinoMatch2.21.90
OR
david_kingvinoMatch2.21.91
OR
david_kingvinoMatch2.21.92
OR
david_kingvinoMatch2.22
OR
david_kingvinoMatch2.22.1
OR
david_kingvinoMatch2.22.2
OR
david_kingvinoMatch2.23
OR
david_kingvinoMatch2.23.5
OR
david_kingvinoMatch2.23.90
OR
david_kingvinoMatch2.23.91
OR
david_kingvinoMatch2.23.92
OR
david_kingvinoMatch2.24
OR
david_kingvinoMatch2.24.1
OR
david_kingvinoMatch2.25
OR
david_kingvinoMatch2.25.3
OR
david_kingvinoMatch2.25.4
OR
david_kingvinoMatch2.25.5
OR
david_kingvinoMatch2.25.90
OR
david_kingvinoMatch2.25.91
OR
david_kingvinoMatch2.25.92
OR
david_kingvinoMatch2.26
OR
david_kingvinoMatch2.26.1
OR
david_kingvinoMatch2.26.2
OR
david_kingvinoMatch2.27
OR
david_kingvinoMatch2.27.5
OR
david_kingvinoMatch2.27.90
OR
david_kingvinoMatch2.27.91
OR
david_kingvinoMatch2.27.92
OR
david_kingvinoMatch2.28
OR
david_kingvinoMatch2.28.1
OR
david_kingvinoMatch2.28.2
OR
david_kingvinoMatch2.28.3
OR
david_kingvinoMatch2.31.4
OR
david_kingvinoMatch2.31.91
OR
david_kingvinoMatch2.32.0
OR
david_kingvinoMatch2.32.1
OR
david_kingvinoMatch2.32.2
OR
david_kingvinoMatch2.99.0
OR
david_kingvinoMatch2.99.1
OR
david_kingvinoMatch2.99.2
OR
david_kingvinoMatch2.99.3
OR
david_kingvinoMatch2.99.4
OR
david_kingvinoMatch2.99.5
OR
david_kingvinoMatch3.0.0
OR
david_kingvinoMatch3.0.1
OR
david_kingvinoMatch3.0.2
OR
david_kingvinoMatch3.0.3
OR
david_kingvinoMatch3.1
OR
david_kingvinoMatch3.1.1
OR
david_kingvinoMatch3.1.2
OR
david_kingvinoMatch3.1.3
OR
david_kingvinoMatch3.1.4
OR
david_kingvinoMatch3.1.5
OR
david_kingvinoMatch3.1.90
OR
david_kingvinoMatch3.1.91
OR
david_kingvinoMatch3.1.92
OR
david_kingvinoMatch3.2.0
OR
david_kingvinoMatch3.2.1
OR
david_kingvinoMatch3.2.2
OR
david_kingvinoMatch3.3.1
OR
david_kingvinoMatch3.3.3
OR
david_kingvinoMatch3.3.92
OR
david_kingvinoMatch3.4.0
OR
david_kingvinoMatch3.4.1
OR
david_kingvinoMatch3.4.2
OR
david_kingvinoMatch3.5.2
OR
david_kingvinoMatch3.5.90
OR
david_kingvinoMatch3.5.92
OR
david_kingvinoMatch3.6.0
OR
david_kingvinoMatch3.6.1
OR
david_kingvinoMatch3.6.2
Node
canonicalubuntu_linuxMatch12.04-lts
OR
canonicalubuntu_linuxMatch12.10
OR
canonicalubuntu_linuxMatch13.04
VendorProductVersionCPE
david_kingvino2.22.2cpe:/a:david_king:vino:2.22.2:::
david_kingvino2.9cpe:/a:david_king:vino:2.9:::
david_kingvino2.19cpe:/a:david_king:vino:2.19:::
david_kingvino3.0.3cpe:/a:david_king:vino:3.0.3:::
david_kingvino2.11.1.2cpe:/a:david_king:vino:2.11.1.2:::
david_kingvino2.24.1cpe:/a:david_king:vino:2.24.1:::
david_kingvino2.25.91cpe:/a:david_king:vino:2.25.91:::
david_kingvino2.28cpe:/a:david_king:vino:2.28:::
david_kingvino2.21.90cpe:/a:david_king:vino:2.21.90:::
david_kingvino3.3.1cpe:/a:david_king:vino:3.3.1:::
Rows per page:
1-10 of 1191

CVSS2

7.1

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

AI Score

6.2

Confidence

Low

EPSS

0.763

Percentile

98.2%