17 matches found
Heap overflow
Multiple heap-based buffer overflows in the ZRLEDECODE function in common/rfb/zrleDecode.h in TigerVNC before 1.3.1, when NDEBUG is enabled, allow remote VNC servers to cause a denial of service vncviewer crash and possibly execute arbitrary code via vectors related to screen image rendering...
CVE-2014-0011
Multiple heap-based buffer overflows in the ZRLEDECODE function in common/rfb/zrleDecode.h in TigerVNC before 1.3.1, when NDEBUG is enabled, allow remote VNC servers to cause a denial of service vncviewer crash and possibly execute arbitrary code via vectors related to screen image rendering...
Denial Of Service (DoS)
libvncserver is vulnerable to denial of service DoS attacks. The vulnerability exists as an integer overflow in the MallocFrameBuffer function in vncviewer.c in LibVNCServer 0.9.9 and earlier allows remote VNC servers to cause a denial of service crash and possibly execute arbitrary code via an...
Null pointer dereference
XRegion in TigerVNC allows remote VNC servers to cause a denial of service NULL pointer dereference by leveraging failure to check a malloc return value, a similar issue to CVE-2014-6052...
CVE-2014-8241
XRegion in TigerVNC allows remote VNC servers to cause a denial of service NULL pointer dereference by leveraging failure to check a malloc return value, a similar issue to CVE-2014-6052...
CVE-2014-6052
The HandleRFBServerMessage function in libvncclient/rfbproto.c in LibVNCServer 0.9.9 and earlier does not check certain malloc return values, which allows remote VNC servers to cause a denial of service application crash or possibly execute arbitrary code by specifying a large screen size in a 1...
Code injection
The HandleRFBServerMessage function in libvncclient/rfbproto.c in LibVNCServer 0.9.9 and earlier does not check certain malloc return values, which allows remote VNC servers to cause a denial of service application crash or possibly execute arbitrary code by specifying a large screen size in a 1...
CVE-2014-6052
The HandleRFBServerMessage function in libvncclient/rfbproto.c in LibVNCServer 0.9.9 and earlier does not check certain malloc return values, which allows remote VNC servers to cause a denial of service application crash or possibly execute arbitrary code by specifying a large screen size in a 1...
CVE-2014-6052
The HandleRFBServerMessage function in libvncclient/rfbproto.c in LibVNCServer 0.9.9 and earlier does not check certain malloc return values, which allows remote VNC servers to cause a denial of service application crash or possibly execute arbitrary code by specifying a large screen size in a 1...
CVE-2014-8240
Integer overflow in TigerVNC allows remote VNC servers to cause a denial of service crash and possibly execute arbitrary code via vectors related to screen size handling, which triggers a heap-based buffer overflow, a similar issue to CVE-2014-6051...
CVE-2014-8240
TigerVNC contains an integer overflow in screen size handling that can lead to a heap-based buffer overflow, enabling crash or potentially arbitrary code execution. Mitigation in the connected advisories shows upstream TigerVNC 1.3.1 addresses these issues; affected platforms/package updates incl...
CVE-2014-8240
Integer overflow in TigerVNC allows remote VNC servers to cause a denial of service crash and possibly execute arbitrary code via vectors related to screen size handling, which triggers a heap-based buffer overflow, a similar issue to CVE-2014-6051...
Integer overflow
Integer overflow in the MallocFrameBuffer function in vncviewer.c in LibVNCServer 0.9.9 and earlier allows remote VNC servers to cause a denial of service crash and possibly execute arbitrary code via an advertisement for a large screen size, which triggers a heap-based buffer overflow...
CVE-2014-6052
The HandleRFBServerMessage function in libvncclient/rfbproto.c in LibVNCServer 0.9.9 and earlier does not check certain malloc return values, which allows remote VNC servers to cause a denial of service application crash or possibly execute arbitrary code by specifying a large screen size in a 1...
CVE-2014-6051
Integer overflow in the MallocFrameBuffer function in vncviewer.c in LibVNCServer 0.9.9 and earlier allows remote VNC servers to cause a denial of service crash and possibly execute arbitrary code via an advertisement for a large screen size, which triggers a heap-based buffer overflow...
CVE-2008-4770
The CMsgReader::readRect function in the VNC Viewer component in RealVNC VNC Free Edition 4.0 through 4.1.2, Enterprise Edition E4.0 through E4.4.2, and Personal Edition P4.0 through P4.4.2 allows remote VNC servers to execute arbitrary code via crafted RFB protocol data, related to "encoding typ...
CVE-2008-3493
CVE-2008-3493 affects RealVNC Windows Client (RealVNC vncviewer.exe) 4.1.2.0. A crafted frame buffer update packet from a remote VNC server can cause an application crash (DoS). CVSS v2 base score 5.0 (AV:N/AC:L/Au:N/C:N/I:N/A:P). No explicit remediation details are provided in the connected docu...