3 matches found
CVE-2023-43826
Apache Guacamole 1.5.3 and older do not consistently ensure that values received from a VNC server will not result in integer overflow. If a user connects to a malicious or compromised VNC server, specially-crafted data could result in memory corruption, possibly allowing arbitrary code to be...
CVE-2023-43826
CVE-2023-43826 affects Apache Guacamole: older releases (1.5.3 and earlier) do not consistently ensure that values from a VNC server avoid integer overflow in VNC image buffers. The root cause is improper handling of VNC data that can trigger memory corruption, with the potential for arbitrary co...
CVE-2023-43826 Apache Guacamole: Integer overflow in handling of VNC image buffers
Apache Guacamole 1.5.3 and older do not consistently ensure that values received from a VNC server will not result in integer overflow. If a user connects to a malicious or compromised VNC server, specially-crafted data could result in memory corruption, possibly allowing arbitrary code to be...