Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in vcSetXCutTextProc() in VNConsole.c in LinuxVNC and VNCommand from the LibVNC/vncterm distribution through 0.9.10. Missing sanitization of the client-specified message length may cause integer overflow or possibly have unspecified other impact via a specially crafted VNC packet.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
LibVNC/vncterm 安全漏洞
Vulnerability Description
LibVNC/vncterm是一款能够将虚拟控制台会话导出到其它VNC客户端的应用程序。LinuxVNC是其中的一个监视Linux的文本控制台;VNCommand是其中的一个执行重定向标准输出的工具。 LibVNC/vncterm 0.9.10及之前版本中的LinuxVNC和VNCommand的‘vcSetXCutTextProc()’函数存在整数溢出漏洞,该漏洞源于程序没有过滤客户端指定的消息长度。攻击者可借助特制的VNC数据包利用该漏洞在系统上执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A