Lucene search
K

20 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-14682

Malware in sbrugna...

9.8CVSS9.2AI score0.04247EPSS
Exploits0References14
OpenVAS
OpenVAS
added 2020/09/29 12:0 a.m.15 views

Huawei EulerOS: Security Advisory for gtk-vnc (EulerOS-SA-2020-2010)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.04985EPSS
Exploits2References2
BDU FSTEC
BDU FSTEC
added 2020/07/07 12:0 a.m.5 views

The vulnerability of the `libvncserver/rre.c` component of the cross-platform library LibVNCServer allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the libvncserver/rre.c component of the cross-platform library LibVNCServer arises from an operation that occurs outside the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of...

5.5CVSS7.1AI score0.0159EPSS
Exploits0References14Affected Software4
CNVD
CNVD
added 2020/06/18 12:0 a.m.2 views

LibVNCServer Buffer Overflow Vulnerability

LibVNCServer is a cross-platform C library that supports the implementation of VNC Virtual Network Computing server or client functionality in programs. A buffer overflow vulnerability exists in the libvncserver/rre.c file in versions of LibVNCServer prior to 0.9.13. A remote attacker could explo...

5.5CVSS10AI score0.0159EPSS
Exploits0References1
OSV
OSV
added 2020/06/17 4:15 p.m.0 views

DEBIAN-CVE-2020-14404

An issue was discovered in LibVNCServer before 0.9.13. libvncserver/rre.c allows out-of-bounds access via encodings...

5.4CVSS7.1AI score0.0159EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.13 views

Huawei EulerOS: Security Advisory for gtk-vnc (EulerOS-SA-2017-1181)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.8AI score0.04985EPSS
Exploits2References2
Veracode
Veracode
added 2019/05/02 5:51 a.m.43 views

Arbitrary Code Execution

TigerVNC is vulnerable to arbitrary code execution attacks. A remote user can send a specially crafted RRE message with subrectangle outside framebuffer boundaries via the ModifiablePixelBuffer::fillRect function to trigger a buffer overflow and execute arbitrary code on the target system...

9.8CVSS9.8AI score0.04247EPSS
Exploits0References16Affected Software1
NVD
NVD
added 2019/03/05 3:29 p.m.21 views

CVE-2019-8260

UltraVNC revision 1199 has a out-of-bounds read vulnerability in VNC client RRE decoder code, caused by multiplication overflow. This attack appears to be exploitable via network connectivity. This vulnerability has been fixed in revision 1200...

9.8CVSS9.3AI score0.02253EPSS
Exploits0References6
OSV
OSV
added 2019/03/05 3:29 p.m.2 views

CVE-2019-8260

UltraVNC revision 1199 has a out-of-bounds read vulnerability in VNC client RRE decoder code, caused by multiplication overflow. This attack appears to be exploitable via network connectivity. This vulnerability has been fixed in revision 1200...

9.8CVSS7.3AI score0.02253EPSS
Exploits0References6
Cvelist
Cvelist
added 2019/03/05 3:0 p.m.22 views

CVE-2019-8260

UltraVNC revision 1199 has a out-of-bounds read vulnerability in VNC client RRE decoder code, caused by multiplication overflow. This attack appears to be exploitable via network connectivity. This vulnerability has been fixed in revision 1200...

9.3AI score0.02253EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2017/08/01 2:21 p.m.9 views

gtk-vnc: Improper check of framebuffer boundaries when processing a tile

It was found that gtk-vnc lacked proper bounds checking while processing messages using RRE, hextile, or copyrect encodings. A remote malicious VNC server could use this flaw to crash VNC viewers which are based on the gtk-vnc library...

7.8CVSS5.8AI score0.02238EPSS
Exploits1References4
OSV
OSV
added 2017/02/28 6:59 p.m.3 views

UBUNTU-CVE-2017-5581

Buffer overflow in the ModifiablePixelBuffer::fillRect function in TigerVNC before 1.7.1 allows remote servers to execute arbitrary code via an RRE message with subrectangle outside framebuffer boundaries...

9.8CVSS7.6AI score0.04247EPSS
Exploits0References3
OSV
OSV
added 2017/02/28 6:59 p.m.2 views

DEBIAN-CVE-2017-5884

gtk-vnc before 0.7.0 does not properly check boundaries of subrectangle-containing tiles, which allows remote servers to execute arbitrary code via the src x, y coordinates in a crafted 1 rre, 2 hextile, or 3 copyrect tile...

7.8CVSS7.5AI score0.02238EPSS
Exploits1References1
Prion
Prion
added 2017/02/28 6:59 p.m.18 views

Buffer overflow

Buffer overflow in the ModifiablePixelBuffer::fillRect function in TigerVNC before 1.7.1 allows remote servers to execute arbitrary code via an RRE message with subrectangle outside framebuffer boundaries...

6.8CVSS9.7AI score0.04247EPSS
Exploits0References9Affected Software1
UbuntuCve
UbuntuCve
added 2017/02/28 6:59 p.m.23 views

CVE-2017-5581

Buffer overflow in the ModifiablePixelBuffer::fillRect function in TigerVNC before 1.7.1 allows remote servers to execute arbitrary code via an RRE message with subrectangle outside framebuffer boundaries...

9.8CVSS7.5AI score0.04247EPSS
Exploits0References2
OSV
OSV
added 2017/02/28 6:59 p.m.20 views

CVE-2017-5581

Buffer overflow in the ModifiablePixelBuffer::fillRect function in TigerVNC before 1.7.1 allows remote servers to execute arbitrary code via an RRE message with subrectangle outside framebuffer boundaries...

9.8CVSS8AI score
Exploits0References9
OSV
OSV
added 2017/02/28 6:59 p.m.26 views

CVE-2017-5884

gtk-vnc before 0.7.0 does not properly check boundaries of subrectangle-containing tiles, which allows remote servers to execute arbitrary code via the src x, y coordinates in a crafted 1 rre, 2 hextile, or 3 copyrect tile...

7.8CVSS7.6AI score
Exploits0References7
OSV
OSV
added 2017/02/28 6:59 p.m.1 views

DEBIAN-CVE-2017-5581

Buffer overflow in the ModifiablePixelBuffer::fillRect function in TigerVNC before 1.7.1 allows remote servers to execute arbitrary code via an RRE message with subrectangle outside framebuffer boundaries...

9.8CVSS8.9AI score0.04247EPSS
Exploits0References1
Cvelist
Cvelist
added 2017/02/28 6:0 p.m.18 views

CVE-2017-5581

Buffer overflow in the ModifiablePixelBuffer::fillRect function in TigerVNC before 1.7.1 allows remote servers to execute arbitrary code via an RRE message with subrectangle outside framebuffer boundaries...

9.8AI score0.04247EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2017/02/28 6:0 p.m.31 views

CVE-2017-5884

gtk-vnc before 0.7.0 does not properly check boundaries of subrectangle-containing tiles, which allows remote servers to execute arbitrary code via the src x, y coordinates in a crafted 1 rre, 2 hextile, or 3 copyrect tile...

7.8CVSS9AI score0.02238EPSS
Exploits1
Rows per page
Query Builder