2 matches found
CVE-2016-9942
CVE-2016-9942 is a heap-based buffer overflow in LibVNCServer/LibVNCClient (ultra.c) that can be triggered by a crafted FramebufferUpdate with the Ultra tile, allowing remote servers to crash the client or potentially execute arbitrary code when the LZO payload length exceeds the tile dimensions....
CVE-2016-9941
LibVNCServer/LibVNCClient (LibVNCServer) contains heap-based buffer overflow vulnerabilities: CVE-2016-9941 in rfbproto.c and CVE-2016-9942 in ultra.c, exploitable via crafted FramebufferUpdate messages. These allow denial of service and potentially remote code execution on affected clients/serve...