mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-11 16:47:12 +02:00
0xMarcio
832 B
832 B
CVE-2014-6051
Description
Integer overflow in the MallocFrameBuffer function in vncviewer.c in LibVNCServer 0.9.9 and earlier allows remote VNC servers to cause a denial of service (crash) and possibly execute arbitrary code via an advertisement for a large screen size, which triggers a heap-based buffer overflow.
POC
Reference
- http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html
- https://usn.ubuntu.com/4587-1/
Github
No PoCs found on GitHub currently.