29 matches found
EUVD-2019-11326
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2019-15690
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LibVNCServer 0.9.12 release and earlier contains heap buffer overflow vulnerability within the HandleCursorShape function in libvncclient/cursor.c. An attacker...
CVE-2019-15690
LibVNCServer 0.9.12 release and earlier contains heap buffer overflow vulnerability within the HandleCursorShape function in libvncclient/cursor.c. An attacker sends cursor shapes with specially crafted dimensions, which can result in remote code execution...
CVE-2019-15690
creationtimestamp| type| source ---|---|--- 2025-01-24 18:04:59+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/2955 2025-01-24 18:48:55+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/113884825791621074...
CVE-2019-15690
LibVNCServer 0.9.12 release and earlier contains heap buffer overflow vulnerability within the HandleCursorShape function in libvncclient/cursor.c. An attacker sends cursor shapes with specially crafted dimensions, which can result in remote code execution...
CVE-2019-15690
LibVNCServer 0.9.12 release and earlier contains heap buffer overflow vulnerability within the HandleCursorShape function in libvncclient/cursor.c. An attacker sends cursor shapes with specially crafted dimensions, which can result in remote code execution...
CVE-2019-15690
LibVNCServer 0.9.12 release and earlier contains heap buffer overflow vulnerability within the HandleCursorShape function in libvncclient/cursor.c. An attacker sends cursor shapes with specially crafted dimensions, which can result in remote code execution...
SUSE: Security Advisory (SUSE-SU-2020:1165-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : LibVNCServer vulnerabilities (USN-4407-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4407-1 advisory. It was discovered that LibVNCServer incorrectly handled decompressing data. An attacker could possibly use this issue to cause...
Ubuntu: Security Advisory (USN-4407-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE: Security Advisory for LibVNCServer (openSUSE-SU-2020:0624-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE Security Update : LibVNCServer (openSUSE-2020-624)
This update for LibVNCServer fixes the following issues : - CVE-2019-15690: Fixed a heap buffer overflow bsc1160471. - CVE-2019-15681: Fixed a memory leak which could have allowed to a remote attacker to read stack memory bsc1155419. - CVE-2019-20788: Fixed a integer overflow and heap-based buffe...
Amazon Linux 2 : libvncserver (ALAS-2020-1411)
The version of libvncserver installed on the remote host is prior to 0.9.9-14. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2020-1411 advisory. Integer Overflow or Wraparound leads to Heap-based Buffer Overflow CVE-2019-15690 Tenable has extracted the preceding...
CVE-2019-20788
libvncclient/cursor.c in LibVNCServer through 0.9.12 has a HandleCursorShape integer overflow and heap-based buffer overflow via a large height or width value. NOTE: this may overlap CVE-2019-15690...
UBUNTU-CVE-2019-20788
libvncclient/cursor.c in LibVNCServer through 0.9.12 has a HandleCursorShape integer overflow and heap-based buffer overflow via a large height or width value. NOTE: this may overlap CVE-2019-15690...
Integer overflow
libvncclient/cursor.c in LibVNCServer through 0.9.12 has a HandleCursorShape integer overflow and heap-based buffer overflow via a large height or width value. NOTE: this may overlap CVE-2019-15690...
Important: libvncserver
Issue Overview: Integer Overflow or Wraparound leads to Heap-based Buffer Overflow CVE-2019-15690 Affected Packages: libvncserver Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference between AL2 Core and AL2 Extras advisories. Issue...
Updated libvncserver packages fix security vulnerability
Updated libvncserver packages fix security vulnerability: In libvncserver, through libvncclient/cursor.c, there is a possibility of a heap overflow, as reported by Pavel Cheremushkin CVE-2019-15690...
MGASA-2020-0164 Updated libvncserver packages fix security vulnerability
Updated libvncserver packages fix security vulnerability: In libvncserver, through libvncclient/cursor.c, there is a possibility of a heap overflow, as reported by Pavel Cheremushkin CVE-2019-15690...
Oracle Linux 7 : libvncserver (ELSA-2020-0913)
The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-0913 advisory. 0.9.9-14 - Fix CVE-2019-15690 an integer overflow in HandleCursorShape in a client bug 1814339 Tenable has extracted the preceding description block directly fr...