5 matches found
Linux Distros Unpatched Vulnerability : CVE-2020-14396
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in LibVNCServer before 0.9.13. libvncclient/tlsopenssl.c has a NULL pointer dereference. CVE-2020-14396 Note that Nessus relies on the...
Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : LibVNCServer vulnerabilities (USN-4434-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4434-1 advisory. Ramin Farajpour Cami discovered that LibVNCServer incorrectly handled certain malformed unix socket names. A remote attacker coul...
Ubuntu: Security Advisory (USN-4434-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-4434-1: LibVNCServer vulnerabilities
Ramin Farajpour Cami discovered that LibVNCServer incorrectly handled certain malformed unix socket names. A remote attacker could exploit this with a crafted socket name, leading to a denial of service, or possibly execute arbitrary code. CVE-2019-20839 It was discovered that LibVNCServer did no...
CVE-2020-14396
LibVNCServer before 0.9.13 contains a NULL pointer dereference in libvncclient/tls_openssl.c (CVE-2020-14396). Affected: LibVNCServer library; issue documented across multiple sources (NVD OSV/OSV-DEBIAN/CNVD/Ubuntu USN). Impact notes in public advisories describe potential crash or instability; ...