Lucene search
+L

4 matches found

nvd
nvd
added 2011/05/26 6:55 p.m.12 views

CVE-2011-1775

The CSecurityTLS::processMsg function in common/rfb/CSecurityTLS.cxx in the vncviewer component in TigerVNC 1.1beta1 does not properly verify the server's X.509 certificate, which allows man-in-the-middle attackers to spoof a TLS VNC server via an arbitrary certificate...

5.8CVSS6.3AI score0.0129EPSS
Exploits0References11
prion
prion
added 2011/05/26 6:55 p.m.15 views

Command injection

The CSecurityTLS::processMsg function in common/rfb/CSecurityTLS.cxx in the vncviewer component in TigerVNC 1.1beta1 does not properly verify the server's X.509 certificate, which allows man-in-the-middle attackers to spoof a TLS VNC server via an arbitrary certificate...

5.8CVSS6.8AI score0.0129EPSS
Exploits0References11Affected Software1
debiancve
debiancve
added 2011/05/26 6:0 p.m.44 views

CVE-2011-1775

The CSecurityTLS::processMsg function in common/rfb/CSecurityTLS.cxx in the vncviewer component in TigerVNC 1.1beta1 does not properly verify the server's X.509 certificate, which allows man-in-the-middle attackers to spoof a TLS VNC server via an arbitrary certificate...

5.8CVSS5.7AI score0.0129EPSS
Exploits0
cve
cve
added 2011/05/26 6:0 p.m.60 views

CVE-2011-1775

CVE-2011-1775 affects TigerVNC vncviewer (TigerVNC 1.1beta1) where CSecurityTLS::processMsg does not properly validate the server's X.509 certificate, enabling MITM by spoofing a TLS VNC server with an arbitrary cert. Concrete details show the flaw enabling password sending without proper cert va...

5.8CVSS6.2AI score0.0129EPSS
Exploits0References11Affected Software1
Rows per page
Query Builder