PT-2017-17704 · Tigervnc+3 · Tigervnc+3

Carnil

Published

2017-04-01

Updated

2018-01-13

CVE-2017-7394

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions TigerVNC version 1.7.1

Description The issue allows unauthenticated users to crash the server by sending long usernames, specifically in the SSecurityPlain::processMsg function within the SSecurityPlain.cxx file.

Recommendations For TigerVNC version 1.7.1, consider restricting access to the server to prevent unauthenticated users from sending long usernames until a patch is available. As a temporary workaround, limiting the length of usernames that can be processed by the server may help mitigate the risk of exploitation.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CESA-2017_2000

CVE-2017-7394

RHSA-2017:2000

RHSA-2017_2000

SUSE-SU-2017:1093-1

SUSE-SU-2017:1094-1

Affected Products

Centos

Red Hat

Suse

Tigervnc

PT-2017-17704 · Tigervnc+3 · Tigervnc+3

CVE-2017-7394

Weakness Enumeration

Related Identifiers

Affected Products

References · 30