Lucene search
K

22 matches found

OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2015:2088-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS9.9AI score0.08272EPSS
Exploits1References5
Ubuntu
Ubuntu
added 2020/10/20 4:35 p.m.139 views

USN-4587-1: iTALC vulnerabilities

Nicolas Ruff discovered that iTALC had buffer overflows, divide-by-zero errors and didn't check malloc return values. A remote attacker could use these issues to cause a denial of service or possibly execute arbitrary code. CVE-2014-6051, CVE-2014-6052, CVE-2014-6053, CVE-2014-6054, CVE-2014-6055...

9.8CVSS7.8AI score0.15089EPSS
Exploits5
Veracode
Veracode
added 2019/05/02 5:4 a.m.39 views

Arbitrary Code Execution

LibVNCServer is a library that allows for easy creation of VNC server or client functionality. An integer overflow flaw, leading to a heap-based buffer overflow, was found in the way screen sizes were handled by LibVNCServer. A malicious VNC server could use this flaw to cause a client to crash o...

7.5CVSS9.6AI score0.08272EPSS
Exploits1References19Affected Software1
Prion
Prion
added 2016/12/14 10:59 p.m.24 views

Null pointer dereference

XRegion in TigerVNC allows remote VNC servers to cause a denial of service NULL pointer dereference by leveraging failure to check a malloc return value, a similar issue to CVE-2014-6052...

7.5CVSS6.9AI score0.06755EPSS
Exploits1References7Affected Software4
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.18 views

Oracle: Security Advisory (ELSA-2014-1826)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS9AI score0.08272EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2015/09/29 12:0 a.m.28 views

Gentoo Security Advisory GLSA 201507-07

Gentoo Linux Local Security Checks GLSA 201507-07 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...

7.5CVSS8.4AI score0.08272EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2015/07/08 12:0 a.m.34 views

GLSA-201507-07 : LibVNCServer: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201507-07 LibVNCServer: Multiple vulnerabilities Multiple vulnerabilities have been discovered in LibVNCServer. Please review the CVE identifiers referenced below for details. Impact : A remote attacker may be able to execute...

7.5CVSS8.7AI score0.08272EPSS
Exploits1References6
OSV
OSV
added 2014/12/15 6:59 p.m.8 views

CVE-2014-6052

The HandleRFBServerMessage function in libvncclient/rfbproto.c in LibVNCServer 0.9.9 and earlier does not check certain malloc return values, which allows remote VNC servers to cause a denial of service application crash or possibly execute arbitrary code by specifying a large screen size in a 1...

9.8AI score
Exploits0References20
CVE
CVE
added 2014/12/15 5:27 p.m.101 views

CVE-2014-6052

CVE-2014-6052 affects LibVNCServer (0.9.9 and earlier) where LibVNCClient’s HandleRFBServerMessage in libvncclient/rfbproto.c fails to validate certain malloc return values. This can allow a remote VNC server to trigger a denial of service (application crash) or potentially execute arbitrary code...

7.5CVSS8.9AI score0.06755EPSS
Exploits1References14Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/11/13 12:0 a.m.31 views

Scientific Linux Security Update : libvncserver on SL6.x, SL7.x i386/x86_64 (20141111)

An integer overflow flaw, leading to a heap-based buffer overflow, was found in the way screen sizes were handled by LibVNCServer. A malicious VNC server could use this flaw to cause a client to crash or, potentially, execute arbitrary code in the client. CVE-2014-6051 A NULL pointer dereference...

7.5CVSS9AI score0.08272EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2014/11/12 12:0 a.m.27 views

CentOS Update for libvncserver CESA-2014:1826 centos6

Check the version of libvncserver SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882078";...

7.5CVSS8.4AI score0.08272EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2014/11/12 12:0 a.m.27 views

Oracle Linux 6 / 7 : libvncserver (ELSA-2014-1826)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2014-1826 advisory. - Fix CVE-2014-6051 integer overflow in screen size handling bug 1157668 - Fix CVE-2014-6052 NULL pointer dereference in framebuffer setup bug...

7.5CVSS8.7AI score0.08272EPSS
Exploits1References6
Cent OS
Cent OS
added 2014/11/11 6:36 p.m.80 views

libvncserver security update

CentOS Errata and Security Advisory CESA-2014:1826 Updated libvncserver packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS ba...

7.5CVSS7.9AI score0.08272EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2014/11/11 6:25 p.m.40 views

Moderate: Red Hat Security Advisory: libvncserver security update

Updated libvncserver packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, ar...

7.5CVSS7.9AI score0.08272EPSS
Exploits1References6
Oracle linux
Oracle linux
added 2014/11/11 12:0 a.m.40 views

libvncserver security update

0.9.7-7.1 - Fix CVE-2014-6051 integer overflow in screen size handling bug 1157668 - Fix CVE-2014-6052 NULL pointer dereference in framebuffer setup bug 1157668 - Fix CVE-2014-6053 NULL pointer dereference in ClientCutText message handling bug 1157668 - Fix CVE-2014-6054 server divide-by-zero in...

7.5CVSS1.4AI score0.08272EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2014/10/06 12:0 a.m.24 views

Fedora 19 : libvncserver-0.9.10-0.6.20140718git9453be42.fc19 (2014-11541)

Various security fixes, including CVE-2014-6051, CVE-2014-6052, CVE-2014-6053, CVE-2014-6054, CVE-2014-6055 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as mu...

7.5CVSS8AI score0.08272EPSS
Exploits1References12
OpenVAS
OpenVAS
added 2014/10/04 12:0 a.m.28 views

Fedora Update for libvncserver FEDORA-2014-11541

Check the version of libvncserver SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868357";...

7.5CVSS8.8AI score0.08272EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2014/10/01 12:0 a.m.22 views

Fedora Update for libvncserver FEDORA-2014-11537

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.8AI score0.08272EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2014/10/01 12:0 a.m.29 views

Fedora 21 : libvncserver-0.9.10-0.6.20140718git9453be42.fc21 (2014-11685)

Various security fixes, including CVE-2014-6051, CVE-2014-6052, CVE-2014-6053, CVE-2014-6054, CVE-2014-6055 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as mu...

7.5CVSS8AI score0.08272EPSS
Exploits1References12
Ubuntu
Ubuntu
added 2014/09/29 5:12 p.m.60 views

USN-2365-1: LibVNCServer vulnerabilities

Nicolas Ruff discovered that LibVNCServer incorrectly handled memory when being advertised large screen sizes by the server. If a user were tricked into connecting to a malicious server, an attacker could use this issue to cause a denial of service, or possibly execute arbitrary code...

7.5CVSS8.6AI score0.08272EPSS
Exploits1
Rows per page
Query Builder