Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2011:0871
HistoryJun 15, 2011 - 12:00 a.m.

(RHSA-2011:0871) Moderate: tigervnc security update

2011-06-1500:00:00
access.redhat.com
8

EPSS

0.003

Percentile

68.6%

JSON

Virtual Network Computing (VNC) is a remote display system which allows you
to view a computer’s desktop environment not only on the machine where it
is running, but from anywhere on the Internet and from a wide variety of
machine architectures. TigerVNC is a suite of VNC servers and clients.

It was discovered that vncviewer could prompt for and send authentication
credentials to a remote server without first properly validating the
server’s X.509 certificate. As vncviewer did not indicate that the
certificate was bad or missing, a man-in-the-middle attacker could use this
flaw to trick a vncviewer client into connecting to a spoofed VNC server,
allowing the attacker to obtain the client’s credentials. (CVE-2011-1775)

All tigervnc users should upgrade to these updated packages, which contain
a backported patch to correct this issue.

OSVersionArchitecturePackageVersionFilename
RedHat6ppc64tigervnc< 1.0.90-0.15.20110314svn4359.el6_1.1tigervnc-1.0.90-0.15.20110314svn4359.el6_1.1.ppc64.rpm
RedHat6s390xtigervnc< 1.0.90-0.15.20110314svn4359.el6_1.1tigervnc-1.0.90-0.15.20110314svn4359.el6_1.1.s390x.rpm
RedHat6x86_64tigervnc-server< 1.0.90-0.15.20110314svn4359.el6_1.1tigervnc-server-1.0.90-0.15.20110314svn4359.el6_1.1.x86_64.rpm
RedHat6i686tigervnc-server< 1.0.90-0.15.20110314svn4359.el6_1.1tigervnc-server-1.0.90-0.15.20110314svn4359.el6_1.1.i686.rpm
RedHat6srctigervnc< 1.0.90-0.15.20110314svn4359.el6_1.1tigervnc-1.0.90-0.15.20110314svn4359.el6_1.1.src.rpm
RedHat6x86_64tigervnc-server-module< 1.0.90-0.15.20110314svn4359.el6_1.1tigervnc-server-module-1.0.90-0.15.20110314svn4359.el6_1.1.x86_64.rpm
RedHat6x86_64tigervnc-debuginfo< 1.0.90-0.15.20110314svn4359.el6_1.1tigervnc-debuginfo-1.0.90-0.15.20110314svn4359.el6_1.1.x86_64.rpm
RedHat6i686tigervnc-debuginfo< 1.0.90-0.15.20110314svn4359.el6_1.1tigervnc-debuginfo-1.0.90-0.15.20110314svn4359.el6_1.1.i686.rpm
RedHat6ppc64tigervnc-debuginfo< 1.0.90-0.15.20110314svn4359.el6_1.1tigervnc-debuginfo-1.0.90-0.15.20110314svn4359.el6_1.1.ppc64.rpm
RedHat6s390xtigervnc-server< 1.0.90-0.15.20110314svn4359.el6_1.1tigervnc-server-1.0.90-0.15.20110314svn4359.el6_1.1.s390x.rpm
Rows per page:
1-10 of 171

Related

openvas 5
cve 1
prion 1
debiancve 1
cvelist 1
nvd 1
fedora 1
nessus 4
altlinux 1
oraclelinux 1
veracode 1
openvas
openvas
RedHat Update for tigervnc RHSA-2011:0871-01
2012-06-06 00:00:00
TigerVNC SSL Certificate Validation Security Bypass Vulnerability - Windows
2011-06-13 00:00:00
Oracle: Security Advisory (ELSA-2011-0871)
2015-10-06 00:00:00
cve
cve
CVE-2011-1775
2011-05-26 18:55:02
prion
prion
Command injection
2011-05-26 18:55:00
debiancve
debiancve
CVE-2011-1775
2011-05-26 18:55:02
cvelist
cvelist
CVE-2011-1775
2011-05-26 18:00:00
nvd
nvd
CVE-2011-1775
2011-05-26 18:55:02
fedora
fedora
[SECURITY] Fedora 15 Update: tigervnc-1.0.90-4.fc15
2011-05-25 02:35:08
nessus
nessus
Oracle Linux 6 : tigervnc (ELSA-2011-0871)
2013-07-12 00:00:00
Scientific Linux Security Update : tigervnc on SL6.x i386/x86_64
2012-08-01 00:00:00
Fedora 15 : tigervnc-1.0.90-4.fc15 (2011-6838)
2011-05-25 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 6 package tigervnc version 1.0.90-alt5
2011-06-21 00:00:00
oraclelinux
oraclelinux
tigervnc security update
2011-06-15 00:00:00
veracode
veracode
Man-in-the-Middle (MitM)
2020-04-10 01:03:57

EPSS

0.003

Percentile

68.6%

JSON
Related for RHSA-2011:0871
openvas5cve1prion1debiancve1cvelist1nvd1fedora1nessus4altlinux1oraclelinux1veracode1