CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2016-9941 – Debian Security Advisory 3753-1
https://notcve.org/view.php?id=CVE-2016-9941
31 Dec 2016 — Heap-based buffer overflow in rfbproto.c in LibVNCClient in LibVNCServer before 0.9.11 allows remote servers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted FramebufferUpdate message containing a subrectangle outside of the client drawing area. Desbordamiento de búfer basado en memoria dinámica en rfbproto.c en LibVNCClient en LibVNCServer en versiones anteriores a 0.9.11 permite a servidores remotos provocar una denegación de servicio (caída de aplicación) ... • http://www.debian.org/security/2017/dsa-3753 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2016-9942 – Debian Security Advisory 3753-1
https://notcve.org/view.php?id=CVE-2016-9942
31 Dec 2016 — Heap-based buffer overflow in ultra.c in LibVNCClient in LibVNCServer before 0.9.11 allows remote servers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted FramebufferUpdate message with the Ultra type tile, such that the LZO payload decompressed length exceeds what is specified by the tile dimensions. Desbordamiento de búfer basado en memoria dinámica en ultra.c en LibVNCClient en LibVNCServer en versiones anteriores a 0.9.11 permite a servidores remotos prov... • http://www.debian.org/security/2017/dsa-3753 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •