vinagre -- format string vulnerability

2008-12-09T00:00:00
ID 214E8E07-D369-11DD-B800-001B77D09812
Type freebsd
Reporter FreeBSD
Modified 2010-05-02T00:00:00

Description

CORE Security Technologies reports:

A format string error has been found on the vinagre_utils_show_error() function that can be exploited via commands issued from a malicious server containing format string specifiers on the VNC name. In a web based attack scenario, the user would be required to connect to a malicious server. Successful exploitation would then allow the attacker to execute arbitrary code with the privileges of the Vinagre user.