CVE-2026-42859— Neat VNC: Buffer overflow due to oversized RSA public keys

Neat VNC: Buffer overflow due to oversized RSA public keys

Neat VNC is a VNC server library. Prior to 0.9.6, a pre-authentication stack buffer overflow exists in neatvnc in the RSA-AES security type handler. An unauthenticated remote attacker who can reach the VNC listening socket can send a crafted security type 5 (RSA-AES) or security type 129 (RSA-AES-256) handshake with an oversized client RSA public key, causing rsa_aes_send_challenge in src/auth/rsa-aes.c to overflow a 1024-byte on-stack buffer when encrypting the server challenge. This results in at least a denial of service via server crash. This vulnerability is fixed in 0.9.6.

N/A

未进行输入大小检查的缓冲区拷贝(传统缓冲区溢出)

Neat VNC 安全漏洞

Neat VNC是Andri Yngvason个人开发者的一个自由许可的 VNC 服务器库。 Neat VNC 0.9.6之前版本存在安全漏洞，该漏洞源于RSA-AES安全类型处理器中存在预认证栈缓冲区溢出，可能导致未认证远程攻击者通过发送特制RSA公钥造成拒绝服务。

N/A

N/A