Lucene search
K

50 matches found

Veracode
Veracode
added 2022/11/02 7:0 p.m.37 views

Denial Of Service (DoS)

qemu is vulnerable to denial of service. The vulnerability exists due to an integer underflow found in the QEMU VNC server while processing ClientCutText messages in the extended format. A malicious client could use this flaw to make QEMU unresponsive by sending a specially crafted payload messag...

6.5CVSS6.1AI score0.0114EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2022/10/17 4:15 p.m.10 views

AZL-11222 CVE-2022-3165 affecting package qemu for versions less than 6.2.0-15

An integer underflow issue was found in the QEMU VNC server while processing ClientCutText messages in the extended format. A malicious client could use this flaw to make QEMU unresponsive by sending a specially crafted payload message, resulting in a denial of service...

6.5CVSS6.8AI score0.0114EPSS
Exploits0References1
OSV
OSV
added 2022/10/17 4:15 p.m.4 views

AZL-35160 CVE-2022-3165 affecting package qemu for versions less than 6.2.0-18

An integer underflow issue was found in the QEMU VNC server while processing ClientCutText messages in the extended format. A malicious client could use this flaw to make QEMU unresponsive by sending a specially crafted payload message, resulting in a denial of service...

6.5CVSS5.7AI score0.0114EPSS
Exploits0References1
OSV
OSV
added 2022/10/17 4:15 p.m.26 views

CVE-2022-3165

An integer underflow issue was found in the QEMU VNC server while processing ClientCutText messages in the extended format. A malicious client could use this flaw to make QEMU unresponsive by sending a specially crafted payload message, resulting in a denial of service...

6.5CVSS6.1AI score
Exploits0References4
Prion
Prion
added 2022/10/17 4:15 p.m.29 views

Integer overflow

An integer underflow issue was found in the QEMU VNC server while processing ClientCutText messages in the extended format. A malicious client could use this flaw to make QEMU unresponsive by sending a specially crafted payload message, resulting in a denial of service...

4CVSS6AI score0.0114EPSS
Exploits0References4Affected Software2
Cvelist
Cvelist
added 2022/10/17 12:0 a.m.20 views

CVE-2022-3165

An integer underflow issue was found in the QEMU VNC server while processing ClientCutText messages in the extended format. A malicious client could use this flaw to make QEMU unresponsive by sending a specially crafted payload message, resulting in a denial of service...

6.5AI score0.0114EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2022/10/17 12:0 a.m.42 views

CVE-2022-3165

An integer underflow issue was found in the QEMU VNC server while processing ClientCutText messages in the extended format. A malicious client could use this flaw to make QEMU unresponsive by sending a specially crafted payload message, resulting in a denial of service...

6.5CVSS6.5AI score0.0114EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2022/10/17 12:0 a.m.48 views

CVE-2022-3165

An integer underflow issue was found in the QEMU VNC server while processing ClientCutText messages in the extended format. A malicious client could use this flaw to make QEMU unresponsive by sending a specially crafted payload message, resulting in a denial of service...

6.5CVSS6.4AI score0.0114EPSS
Exploits0
CNVD
CNVD
added 2022/09/28 12:0 a.m.28 views

QEMU Denial of Service Vulnerability (CNVD-2022-84157)

QEMU Quick Emulator is a set of emulation processor software from Fabrice Bellard, a French personal developer. QEMU VNC server has a denial of service vulnerability, which stems from an integer underflow in the processing of ClientCutText messages in extended format, which can be exploited by an...

6.5CVSS3.3AI score0.0114EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/09/25 12:0 a.m.4 views

QEMU 数字错误漏洞

QEMU Quick Emulator is a set of emulation processor software from Fabrice Bellard, a French personal developer. QEMU VNC server has a denial of service vulnerability, which stems from an integer underflow in the processing of ClientCutText messages in extended format, which can be exploited by an...

6.5CVSS6.7AI score0.0114EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2022/09/25 12:0 a.m.3 views

PT-2022-7294 · Qemu +9 · Qemu +9

Name of the Vulnerable Software and Affected Versions: QEMU affected versions not specified Description: The issue is related to an integer underflow in the QEMU VNC server when processing ClientCutText messages in the extended format. This can be exploited by a malicious client sending a special...

8.8CVSS7.4AI score0.05552EPSS
Exploits15References143
Prion
Prion
added 2020/02/05 8:15 p.m.20 views

Null pointer dereference

A NULL pointer dereference flaw was found in the way LibVNCServer before 0.9.9 handled certain ClientCutText message. A remote attacker could use this flaw to crash the VNC server by sending a specially crafted ClientCutText message from a VNC client...

5CVSS6.9AI score0.03115EPSS
Exploits0References6Affected Software2
Cvelist
Cvelist
added 2020/02/05 7:35 p.m.31 views

CVE-2010-5304

A NULL pointer dereference flaw was found in the way LibVNCServer before 0.9.9 handled certain ClientCutText message. A remote attacker could use this flaw to crash the VNC server by sending a specially crafted ClientCutText message from a VNC client...

7.3AI score0.03115EPSS
Exploits0References6
Veracode
Veracode
added 2019/05/02 5:4 a.m.17 views

Denial Of Service (DoS) Through Memory Consumption

libvncserver is vulenrable to denial of service. The vulnerability exists through a NULL pointer dereference flaw was found in the way LibVNCServer handledcertain ClientCutText message...

5CVSS8.6AI score0.07563EPSS
Exploits0References17Affected Software7
Tenable Nessus
Tenable Nessus
added 2017/09/11 12:0 a.m.28 views

EulerOS 2.0 SP1 : tigervnc (EulerOS-SA-2017-1227)

According to the versions of the tigervnc packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A denial of service flaw was found in the TigerVNC's Xvnc server. A remote unauthenticated attacker could use this flaw to make Xvnc crash by...

9.8CVSS7.1AI score0.04247EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2017/09/01 12:0 a.m.32 views

Amazon Linux AMI : tigervnc (ALAS-2017-879)

Buffer overflow in ModifiablePixelBuffer::fillRect A buffer overflow flaw, leading to memory corruption, was found in TigerVNC viewer. A remote malicious VNC server could use this flaw to crash the client vncviewer process resulting in denial of service. CVE-2017-5581 VNC server can crash when TL...

9.8CVSS7AI score0.04247EPSS
Exploits1References8
RedHat Linux
RedHat Linux
added 2017/08/01 2:33 p.m.41 views

tigervnc: Integer overflow in SMsgReader::readClientCutText

An integer overflow flaw was found in the way TigerVNC handled ClientCutText messages. A remote, authenticated attacker could use this flaw to make Xvnc crash by sending specially crafted ClientCutText messages, resulting in denial of service...

6.5CVSS7.2AI score0.01432EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2017/04/04 9:19 a.m.22 views

CVE-2017-7395

An integer overflow flaw was found in the way TigerVNC handled ClientCutText messages. A remote, authenticated attacker could use this flaw to make Xvnc crash by sending specially crafted ClientCutText messages, resulting in denial of service...

6.5CVSS2.6AI score0.01432EPSS
Exploits0References1
OSV
OSV
added 2014/12/15 6:59 p.m.1 views

DEBIAN-CVE-2014-6053

The rfbProcessClientNormalMessage function in libvncserver/rfbserver.c in LibVNCServer 0.9.9 and earlier does not properly handle attempts to send a large amount of ClientCutText data, which allows remote attackers to cause a denial of service memory consumption or daemon crash via a crafted...

5CVSS6.7AI score0.07563EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2014/12/15 5:27 p.m.30 views

CVE-2014-6053

The rfbProcessClientNormalMessage function in libvncserver/rfbserver.c in LibVNCServer 0.9.9 and earlier does not properly handle attempts to send a large amount of ClientCutText data, which allows remote attackers to cause a denial of service memory consumption or daemon crash via a crafted...

5CVSS9.2AI score0.07563EPSS
Exploits0
Rows per page
Query Builder