5 matches found
CVE-2026-7838
UltraVNC viewer up to 1.8.2.2 is affected by an integer overflow leading to a heap buffer overflow in the RFB failure-response parsing path. In vncviewer/ClientConnection.cpp, the 4-byte reasonLen field is used as reasonLen+1 in CheckBufferSize(); with unsigned 32-bit operands, reasonLen 0xFFFFFF...
EUVD-2026-40884
UltraVNC viewer through 1.8.2.2 contains an integer overflow leading to a heap buffer overflow in the RFB protocol failure-response parsing path. In vncviewer/ClientConnection.cpp, the 4-byte network-supplied reasonLen field type CARD32 is passed as reasonLen+1 to CheckBufferSize. Because both...
DEBIAN-CVE-2021-43804
PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In affected versions if the incoming RTCP BYE message contains a reason's length, this declared length is not checked against th...
PJSIP 缓冲区错误漏洞
PJSIP is a free and open source multimedia communications library written in C that implements standards-based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. PJSIP suffers from a buffer error vulnerability that arises from the fact that if an incoming "RTCP BYE" message contains a reason...
PT-2021-6171 · Pjsip +3 · Pjsip +3
Name of the Vulnerable Software and Affected Versions: PJSIP versions prior to the fixed version Description: The issue is related to a buffer overflow in the PJSIP library when handling the length of RTCP BYE messages. This can be exploited by a remote attacker to execute arbitrary code. The...