Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2014-6051

Опубликовано: 30 сент. 2014
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 7.5

Описание

Integer overflow in the MallocFrameBuffer function in vncviewer.c in LibVNCServer 0.9.9 and earlier allows remote VNC servers to cause a denial of service (crash) and possibly execute arbitrary code via an advertisement for a large screen size, which triggers a heap-based buffer overflow.

РелизСтатусПримечание
bionic

released

1:3.0.1+dfsg1-1
devel

DNE

esm-apps/bionic

released

1:3.0.1+dfsg1-1
esm-apps/xenial

released

1:2.0.2+dfsg1-4ubuntu0.1
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was needed]
esm-infra/focal

DNE

focal

DNE

precise/esm

DNE

trusty

ignored

end of standard support
trusty/esm

DNE

trusty was needed

Показывать по

РелизСтатусПримечание
devel

not-affected

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was not-affected]
lucid

DNE

precise

DNE

trusty

not-affected

trusty/esm

DNE

trusty was not-affected
upstream

needs-triage

Показывать по

РелизСтатусПримечание
devel

released

0.9.9+dfsg-6ubuntu1
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [0.9.9+dfsg-1ubuntu1.1]]
lucid

ignored

end of life
precise

released

0.9.8.2-2ubuntu1.1
trusty

released

0.9.9+dfsg-1ubuntu1.1
trusty/esm

DNE

trusty was released [0.9.9+dfsg-1ubuntu1.1]
upstream

needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 91%
0.06605
Низкий

7.5 High

CVSS2

Связанные уязвимости

redhat логотип

CVE-2014-6051

redhat
почти 11 лет назад

Integer overflow in the MallocFrameBuffer function in vncviewer.c in LibVNCServer 0.9.9 and earlier allows remote VNC servers to cause a denial of service (crash) and possibly execute arbitrary code via an advertisement for a large screen size, which triggers a heap-based buffer overflow.

nvd логотип

CVE-2014-6051

nvd
почти 11 лет назад

Integer overflow in the MallocFrameBuffer function in vncviewer.c in LibVNCServer 0.9.9 and earlier allows remote VNC servers to cause a denial of service (crash) and possibly execute arbitrary code via an advertisement for a large screen size, which triggers a heap-based buffer overflow.

debian логотип

CVE-2014-6051

debian
почти 11 лет назад

Integer overflow in the MallocFrameBuffer function in vncviewer.c in L ...

github логотип

GHSA-6457-9pfw-39g2

github
около 3 лет назад

Integer overflow in the MallocFrameBuffer function in vncviewer.c in LibVNCServer 0.9.9 and earlier allows remote VNC servers to cause a denial of service (crash) and possibly execute arbitrary code via an advertisement for a large screen size, which triggers a heap-based buffer overflow.

fstec логотип

BDU:2020-00583

CVSS3: 7.3
fstec
больше 11 лет назад

Уязвимость функции MallocFrameBuffer кроссплатформенной библиотеки LibVNCServer, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании

EPSS

Процентиль: 91%
0.06605
Низкий

7.5 High

CVSS2