Описание
Stack-based buffer overflow in the reds_handle_ticket function in server/reds.c in SPICE 0.12.0 allows remote attackers to cause a denial of service (crash) via a long password in a SPICE ticket.
Ссылки
- ExploitPatch
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- ExploitPatch
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:spice_project:spice:0.12.0:*:*:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:a:redhat:enterprise_virtualization:3.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:5:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
EPSS
Процентиль: 77%
0.01094
Низкий
5 Medium
CVSS2
Дефекты
CWE-119
Связанные уязвимости
ubuntu
почти 12 лет назад
Stack-based buffer overflow in the reds_handle_ticket function in server/reds.c in SPICE 0.12.0 allows remote attackers to cause a denial of service (crash) via a long password in a SPICE ticket.
redhat
почти 12 лет назад
Stack-based buffer overflow in the reds_handle_ticket function in server/reds.c in SPICE 0.12.0 allows remote attackers to cause a denial of service (crash) via a long password in a SPICE ticket.
debian
почти 12 лет назад
Stack-based buffer overflow in the reds_handle_ticket function in serv ...
EPSS
Процентиль: 77%
0.01094
Низкий
5 Medium
CVSS2
Дефекты
CWE-119