Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2009-3616

Опубликовано: 23 окт. 2009
Источник: ubuntu
Приоритет: high
EPSS Низкий
CVSS2: 8.5
CVSS3: 9.9

Описание

Multiple use-after-free vulnerabilities in vnc.c in the VNC server in QEMU 0.10.6 and earlier might allow guest OS users to execute arbitrary code on the host OS by establishing a connection from a VNC client and then (1) disconnecting during data transfer, (2) sending a message using incorrect integer data types, or (3) using the Fuzzy Screen Mode protocol, related to double free vulnerabilities.

РелизСтатусПримечание
dapper

DNE

devel

DNE

hardy

not-affected

intrepid

not-affected

jaunty

not-affected

code not present
karmic

DNE

lucid

DNE

maverick

DNE

upstream

needs-triage

Показывать по

РелизСтатусПримечание
dapper

not-affected

devel

DNE

hardy

not-affected

intrepid

not-affected

code not present
jaunty

ignored

end of life
karmic

DNE

lucid

DNE

maverick

DNE

upstream

released

0.10.7

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

not-affected

0.11.0-0ubuntu1
hardy

DNE

intrepid

DNE

jaunty

DNE

karmic

not-affected

0.11.0-0ubuntu1
lucid

not-affected

0.11.0-0ubuntu1
maverick

not-affected

0.11.0-0ubuntu1
upstream

released

0.11.0

Показывать по

Ссылки на источники

EPSS

Процентиль: 74%
0.00858
Низкий

8.5 High

CVSS2

9.9 Critical

CVSS3

Связанные уязвимости

nvd логотип

CVE-2009-3616

CVSS3: 9.9
nvd
около 16 лет назад

Multiple use-after-free vulnerabilities in vnc.c in the VNC server in QEMU 0.10.6 and earlier might allow guest OS users to execute arbitrary code on the host OS by establishing a connection from a VNC client and then (1) disconnecting during data transfer, (2) sending a message using incorrect integer data types, or (3) using the Fuzzy Screen Mode protocol, related to double free vulnerabilities.

debian логотип

CVE-2009-3616

CVSS3: 9.9
debian
около 16 лет назад

Multiple use-after-free vulnerabilities in vnc.c in the VNC server in ...

github логотип

GHSA-vmwq-xc6v-xj4j

CVSS3: 9.9
github
больше 3 лет назад

Multiple use-after-free vulnerabilities in vnc.c in the VNC server in QEMU 0.10.6 and earlier might allow guest OS users to execute arbitrary code on the host OS by establishing a connection from a VNC client and then (1) disconnecting during data transfer, (2) sending a message using incorrect integer data types, or (3) using the Fuzzy Screen Mode protocol, related to double free vulnerabilities.

EPSS

Процентиль: 74%
0.00858
Низкий

8.5 High

CVSS2

9.9 Critical

CVSS3