Published: 10/05/2011 Updated: 17/08/2017

CVSS v2 Base Score: 3.5 | Impact Score: 2.9 | Exploitability Score: 6.8

VMScore: 312

Vector: AV:N/AC:M/Au:S/C:N/I:N/A:P

The rfbSendFramebufferUpdate function in server/libvncserver/rfbserver.c in vino-server in Vino 2.x prior to 2.28.3, 2.32.x prior to 2.32.2, 3.0.x prior to 3.0.2, and 3.1.x prior to 3.1.1, when tight encoding is used, allows remote authenticated users to cause a denial of service (daemon crash) via crafted dimensions in a framebuffer update request that triggers an out-of-bounds read operation.

Vulnerable Product	Search on Vulmon	Subscribe to Product
david king vino 2.11
david king vino 2.13
david king vino 2.12
david king vino 2.20
david king vino 2.23
david king vino 2.26
david king vino 2.18.1
david king vino 2.19.5
david king vino 2.21.90
david king vino 2.21.91
david king vino 2.24.1
david king vino 2.25.3
david king vino 2.26.2
david king vino 2.27.5
david king vino 3.0.1
david king vino 3.1
david king vino 2.16
david king vino 2.15
david king vino 2.28
david king vino 2.27
david king vino 2.28.2
david king vino 2.17.2
david king vino 2.17.4
david king vino 2.20.1
david king vino 2.21.1
david king vino 2.23.5
david king vino 2.23.90
david king vino 2.25.90
david king vino 2.25.91
david king vino 2.27.92
david king vino 2.32.0
david king vino 2.10
david king vino 2.18
david king vino 2.17
david king vino 2.28.1
david king vino 2.24
david king vino 2.17.5
david king vino 2.17.92
david king vino 2.21.2
david king vino 2.21.3
david king vino 2.23.91
david king vino 2.23.92
david king vino 2.25.92
david king vino 2.26.1
david king vino 2.32.1
david king vino 3.0.0
david king vino 2.14
david king vino 2.19
david king vino 2.22
david king vino 2.21
david king vino 2.25
david king vino 2.13.5
david king vino 2.19.90
david king vino 2.19.92
david king vino 2.21.92
david king vino 2.22.1
david king vino 2.22.2
david king vino 2.25.4
david king vino 2.25.5
david king vino 2.27.90
david king vino 2.27.91

Synopsis Moderate: vino security update Type/Severity Security Advisory: Moderate Topic An updated vino package that fixes several security issues is nowavailable for Red Hat Enterprise Linux 6The Red Hat Security Response Team has rated this update as having moderatesecurity impact Common Vulnerability S ...

An attacker could send crafted input to Vino and cause it to crash ...

Kevin Chen discovered that incorrect processing of framebuffer requests in the Vino VNC server could lead to denial of service For the stable distribution (squeeze), this problem has been fixed in version 2282-2+squeeze1 For the unstable distribution (sid), this problem has been fixed in version 2282-3 We recommend that you upgrade your vino ...

CVE-2011-0905

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect