DescriptionMultiple integer signedness errors in (1) UltraVNC 1.0.2 and 1.0.5 and (2) TightVnc 1.3.9 allow remote VNC servers to cause a denial of service (heap corruption and application crash) or possibly execute arbitrary code via a large length value in a message, related to the (a) ClientConnection::CheckBufferSize and (b) ClientConnection::CheckFileZipBufferSize functions in ClientConnection.cpp.
Overall state of this security issue: Does not affect SUSE products
This issue is currently rated as having critical severity.
|National Vulnerability Database|
Note from the SUSE Security TeamThis is a vulnerability in various VNC implementations against the client. The vulnerable code is only found in the Windows client implementation. SUSE Bugzilla entry: 962374 [RESOLVED / INVALID] No SUSE Security Announcements cross referenced.
SUSE Timeline for this CVECVE page created: Fri Jun 28 03:23:45 2013
CVE page last modified: Fri Oct 7 12:45:45 2022