Lucene search
K

38 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2014-6053

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The rfbProcessClientNormalMessage function in libvncserver/rfbserver.c in LibVNCServer 0.9.9 and earlier does not properly handle attempts to send a large amoun...

5CVSS7.3AI score0.07563EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.22 views

RHEL 5 : kdenetwork (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - libvncserver: server NULL pointer dereference flaw in ClientCutText message handling CVE-2014-6053 Note that Nessus...

5CVSS7.2AI score0.07563EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.20 views

Mageia: Security Advisory (MGASA-2014-0432)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.8AI score0.0783EPSS
Exploits3References40
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.20 views

Mageia: Security Advisory (MGASA-2014-0466)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS8.3AI score0.0783EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.31 views

Mageia: Security Advisory (MGASA-2020-0242)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.9AI score0.07563EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2015:2088-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS9.9AI score0.08272EPSS
Exploits1References5
Ubuntu
Ubuntu
added 2020/10/20 4:35 p.m.139 views

USN-4587-1: iTALC vulnerabilities

Nicolas Ruff discovered that iTALC had buffer overflows, divide-by-zero errors and didn't check malloc return values. A remote attacker could use these issues to cause a denial of service or possibly execute arbitrary code. CVE-2014-6051, CVE-2014-6052, CVE-2014-6053, CVE-2014-6054, CVE-2014-6055...

9.8CVSS7.8AI score0.15089EPSS
Exploits5
OpenVAS
OpenVAS
added 2020/10/08 12:0 a.m.31 views

Ubuntu: Security Advisory (USN-4573-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9AI score0.07563EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/10/08 12:0 a.m.39 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : Vino vulnerabilities (USN-4573-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4573-1 advisory. Nicolas Ruff discovered that Vino incorrectly handled large ClientCutText messages. A remote attacker could use this issue to cau...

9.8CVSS7.6AI score0.07563EPSS
Exploits1References8
Ubuntu
Ubuntu
added 2020/10/07 12:45 p.m.70 views

USN-4573-1: Vino vulnerabilities

Nicolas Ruff discovered that Vino incorrectly handled large ClientCutText messages. A remote attacker could use this issue to cause the server to crash, resulting in a denial of service. CVE-2014-6053 It was discovered that Vino incorrectly handled certain packet lengths. A remote attacker could...

9.8CVSS7.7AI score0.07563EPSS
Exploits1
Debian
Debian
added 2019/12/21 4:3 p.m.142 views

[SECURITY] [DLA 2045-1] tightvnc security update

Package : tightvnc Version : 1.3.9-6.5+deb8u1 CVE ID : CVE-2014-6053 CVE-2018-7225 CVE-2019-8287 CVE-2018-20021 CVE-2018-20022 CVE-2019-15678 CVE-2019-15679 CVE-2019-15680 CVE-2019-15681 Debian Bug : 945364 Several vulnerabilities have recently been discovered in TightVNC 1.x, an X11 based VNC...

9.8CVSS7.1AI score0.19461EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2019/12/03 12:0 a.m.40 views

Debian DLA-2014-1 : vino security update

Several vulnerabilities have been identified in the VNC code of vino, a desktop sharing utility for the GNOME desktop environment. The vulnerabilities referenced below are issues that have originally been reported against Debian source package libvncserver. The vino source package in Debian ships...

9.8CVSS7.4AI score0.07563EPSS
Exploits1References5
Debian
Debian
added 2019/11/29 8:30 a.m.173 views

[SECURITY] [DLA 2014-1] vino security update

Package : vino Version : 3.14.0-2+deb8u1 CVE ID : CVE-2014-6053 CVE-2018-7225 CVE-2019-15681 Debian Bug : 945784 Several vulnerabilities have been identified in the VNC code of vino, a desktop sharing utility for the GNOME desktop environment. The vulnerabilities referenced below are issues that...

9.8CVSS6.9AI score0.07563EPSS
Exploits1
Veracode
Veracode
added 2019/05/02 5:4 a.m.39 views

Arbitrary Code Execution

LibVNCServer is a library that allows for easy creation of VNC server or client functionality. An integer overflow flaw, leading to a heap-based buffer overflow, was found in the way screen sizes were handled by LibVNCServer. A malicious VNC server could use this flaw to cause a client to crash o...

7.5CVSS9.6AI score0.08272EPSS
Exploits1References19Affected Software1
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.24 views

Oracle: Security Advisory (ELSA-2014-1827)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS8.9AI score0.0783EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.18 views

Oracle: Security Advisory (ELSA-2014-1826)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS9AI score0.08272EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2015/09/29 12:0 a.m.28 views

Gentoo Security Advisory GLSA 201507-07

Gentoo Linux Local Security Checks GLSA 201507-07 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...

7.5CVSS8.4AI score0.08272EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2015/07/08 12:0 a.m.34 views

GLSA-201507-07 : LibVNCServer: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201507-07 LibVNCServer: Multiple vulnerabilities Multiple vulnerabilities have been discovered in LibVNCServer. Please review the CVE identifiers referenced below for details. Impact : A remote attacker may be able to execute...

7.5CVSS8.7AI score0.08272EPSS
Exploits1References6
OSV
OSV
added 2014/12/15 6:59 p.m.7 views

CVE-2014-6053

The rfbProcessClientNormalMessage function in libvncserver/rfbserver.c in LibVNCServer 0.9.9 and earlier does not properly handle attempts to send a large amount of ClientCutText data, which allows remote attackers to cause a denial of service memory consumption or daemon crash via a crafted...

8.7AI score
Exploits0References18
Debian CVE
Debian CVE
added 2014/12/15 5:27 p.m.30 views

CVE-2014-6053

The rfbProcessClientNormalMessage function in libvncserver/rfbserver.c in LibVNCServer 0.9.9 and earlier does not properly handle attempts to send a large amount of ClientCutText data, which allows remote attackers to cause a denial of service memory consumption or daemon crash via a crafted...

5CVSS9.2AI score0.07563EPSS
Exploits0
Rows per page
Query Builder