CVE-2016-10207

Опубликовано: 23 авг. 2016

Источник: redhat

CVSS3: 7.5

EPSS Низкий

Описание

The Xvnc server in TigerVNC allows remote attackers to cause a denial of service (invalid memory access and crash) by terminating a TLS handshake early.

A denial of service flaw was found in the TigerVNC's Xvnc server. A remote unauthenticated attacker could use this flaw to make Xvnc crash by terminating the TLS handshake process early.

Ссылки на источники

Дополнительная информация

Статус:

Moderate

https://bugzilla.redhat.com/show_bug.cgi?id=1418761tigervnc: VNC server can crash when TLS handshake terminates early

EPSS

Процентиль: 82%

0.01689

Низкий

7.5 High

CVSS3

Связанные уязвимости

CVE-2016-10207

CVSS3: 7.5

ubuntu

больше 8 лет назад

The Xvnc server in TigerVNC allows remote attackers to cause a denial of service (invalid memory access and crash) by terminating a TLS handshake early.

CVE-2016-10207

CVSS3: 7.5

nvd

больше 8 лет назад

The Xvnc server in TigerVNC allows remote attackers to cause a denial of service (invalid memory access and crash) by terminating a TLS handshake early.

CVE-2016-10207

CVSS3: 7.5

debian

больше 8 лет назад

The Xvnc server in TigerVNC allows remote attackers to cause a denial ...

openSUSE-SU-2017:0444-1

suse-cvrf

больше 8 лет назад

Security update for tigervnc

GHSA-xv2c-qf7g-w8gj

CVSS3: 7.5

github

больше 3 лет назад

The Xvnc server in TigerVNC allows remote attackers to cause a denial of service (invalid memory access and crash) by terminating a TLS handshake early.

EPSS

Процентиль: 82%

0.01689

Низкий

7.5 High

CVSS3