PT-2016-3499 · Tigervnc+2 · Tigervnc+2

Published

2015-11-19

Updated

2016-12-20

CVE-2014-8241

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions TigerVNC (affected versions not specified)

Description The issue allows remote VNC servers to cause a denial of service by leveraging failure to check a malloc return value, which can lead to a NULL pointer dereference. This is similar to a previously identified issue.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

CESA-2015_2233

CVE-2014-8241

MGASA-2015-0459

RHSA-2015:2233

RHSA-2015_2233

Affected Products

Centos

Red Hat

Tigervnc

PT-2016-3499 · Tigervnc+2 · Tigervnc+2

CVE-2014-8241

Weakness Enumeration

Related Identifiers

Affected Products

References · 24