KLCERT-20-009: Remote Code Execution on LibVNC version prior to 0.9.12

Главная
Уязвимости
KLCERT-20-009: Remote Code Execution on LibVNC version prior to 0.9.12

23 марта 2020

Vendor

LibVNC

CVE-IDS

2019-15690
KLCERT

KLCERT-20-009

Timeline

Kaspersky ICS CERT advisory updated

02 ноября 2023
Kaspersky ICS CERT advisory published

23 марта 2020
Vendor releases patch

Декабрь 2019
Vulnerabilities reported

Ноябрь 2019

Description

LibVNCServer 0.9.12 release and earlier contains heap buffer overflow vulnerability within the HandleCursorShape() function in libvncclient/cursor.c. An attacker sends cursor shapes with specially crafted dimensions, which can result in remote code execution.

CWE

CWE-122: Integer Overflow or Wraparound leads to Heap-based Buffer Overflow

CVSS v3

0.0

(CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C)

Exploitability

Remotely exploitable, network access is required

Attack complexity

Low

User interaction

Required

Impact

Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code.

Existence of exploit

Unknown

Affected products

LibVNCServer the 0.9.12 release and earlier

Mitigation

Update LibVNCServer to the commit with hash 54220248886b5001fbbb9fa73c4e1a2cb9413fed or newer.

Kaspersky publishes information on newly identified vulnerabilities in order to raise user awareness of the IT security threats detected. Kaspersky does not make any guarantees in respect of information received from vendors of products in which vulnerabilities have been identified, which is included in the following sections of the advisory: Affected Products, Vendor Mitigation.

Вернуться к началу

Timeline

Kaspersky ICS CERT advisory updated

02 ноября 2023
Kaspersky ICS CERT advisory published

23 марта 2020
Vendor releases patch

Декабрь 2019
Vulnerabilities reported

Ноябрь 2019

Вернуться к началу