PT-2017-3956 · Libvncserver Team+8 · Libvncserver+8

Published

2017-02-15

·

Updated

2022-04-01

·

CVE-2017-18922

CVSS v3.1

9.8

Critical

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions LibVNCServer versions prior to 0.9.12
Description The issue is related to a buffer overflow in the websockets.c component of LibVNCServer. This can be exploited by a malicious attacker sending specially crafted WebSocket frames to a server, causing a heap-based buffer overflow. The exploitation of this issue may allow a remote attacker to cause a denial of service or execute arbitrary code.
Recommendations For LibVNCServer versions prior to 0.9.12, update to version 0.9.12 or later to resolve the issue. As a temporary workaround, consider restricting access to the websockets.c component until a patch is available. Avoid using the vulnerable component in the affected API endpoint until the issue is resolved.

Fix

Memory Corruption

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-120

Related Identifiers

ALSA-2020:3385
ALT-PU-2019-2585
ALT-PU-2019-2662
BDU:2020-03957
BDU:2020-03959
CESA-2020_3281
CESA-2020_3385
CVE-2017-18922
OPENSUSE-SU-2020:0960-1
OPENSUSE-SU-2020:0978-1
OPENSUSE-SU-2020:0988-1
OPENSUSE-SU-2020:1025-1
OPENSUSE-SU-2020:1056-1
OPENSUSE-SU-2020_0960-1
OPENSUSE-SU-2020_0978-1
OPENSUSE-SU-2020_0988-1
OPENSUSE-SU-2020_1025-1
OPENSUSE-SU-2020_1056-1
OPENSUSE-SU-2024:10598-1
RHSA-2020:3281
RHSA-2020:3385
RHSA-2020:3456
RHSA-2020:3588
RHSA-2020_3281
RHSA-2020_3385
SUSE-SU-2020:1873-1
SUSE-SU-2020:1922-1
SUSE-SU-2020:2167-1
SUSE-SU-2020_1873-1
SUSE-SU-2020_1922-1
SUSE-SU-2020_2167-1
USN-4407-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Libvncserver
Linuxmint
Red Hat
Suse
Ubuntu