Lucene search
Veracode Vulnerability DatabaseVERACODE:13287HistoryJan 31, 2019 - 1:29 a.m.
Remote Code Execution (RCE)
2019-01-3101:29:57
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
EPSS
0.004
Percentile
73.4%
LibVNCserver.so is vulnerable to remote code execution. A heap out-of-bounds write vulnerability in libvncserver/rfbserver.c allows for a remote attacker to execute arbitrary code on the system.
References
www.securityfocus.com/bid/106825
cert-portal.siemens.com/productcert/pdf/ssa-390195.pdf
github.com/LibVNC/libvncserver/commit/15bb719c03cc70f14c36a843dcb16ed69b405707
github.com/LibVNC/libvncserver/issues/273
lists.debian.org/debian-lts-announce/2019/01/msg00029.html
lists.debian.org/debian-lts-announce/2019/10/msg00042.html
usn.ubuntu.com/3877-1/
usn.ubuntu.com/4547-1/
usn.ubuntu.com/4587-1/
www.openwall.com/lists/oss-security/2018/12/10/8
Related
prion
prion
Heap overflow
2019-01-30 18:29:00
cvelist
cvelist
CVE-2018-20749
2019-01-30 18:00:00
osv
osv
CVE-2018-20749
2019-01-30 18:29:00
libvncserver - security update
2019-01-31 00:00:00
italc vulnerabilities
2020-09-28 16:07:15
nvd
nvd
CVE-2018-20749
2019-01-30 18:29:00
ubuntucve
ubuntucve
CVE-2018-20749
2019-01-30 00:00:00
CVE-2018-15127
2018-12-19 00:00:00
redhatcve
redhatcve
CVE-2018-20749
2019-01-31 14:51:51
cve
cve
CVE-2018-20749
2019-01-30 18:29:00
debiancve
debiancve
CVE-2018-20749
2019-01-30 18:29:00
nessus
nessus
SUSE SLES11 Security Update : LibVNCServer (SUSE-SU-2019:13952-1)
2019-02-13 00:00:00
openSUSE Security Update : LibVNCServer (openSUSE-2019-196)
2019-02-19 00:00:00
SUSE SLED15 / SLES15 Security Update : LibVNCServer (SUSE-SU-2019:0283-1)
2019-02-08 00:00:00
suse
suse
Security update for LibVNCServer (critical)
2019-02-18 00:00:00
Security update for LibVNCServer (critical)
2019-02-18 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2019:0313-1)
2021-04-19 00:00:00
openSUSE: Security Advisory for LibVNCServer (openSUSE-SU-2019:0200-1)
2019-02-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:13952-1)
2021-06-09 00:00:00
debian
debian
[SECURITY] [DLA 1652-1] libvncserver security update
2019-01-31 14:40:16
[SECURITY] [DLA 1979-1] italc security update
2019-10-30 22:21:35
ubuntu
ubuntu
LibVNCServer vulnerabilities
2019-01-31 00:00:00
iTALC vulnerabilities
2020-09-28 00:00:00
iTALC vulnerabilities
2020-10-20 00:00:00
mageia
mageia
Updated italc packages fix security vulnerabilities
2020-11-23 22:51:37
ics
ics
Siemens SIMATIC ITC
2021-12-16 12:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1900
2021-07-02 17:22:34