Search Results | AttackerKB

An issue was discovered in LibVNCServer before 0.9.13. There is an information leak (of uninitialized memory contents) in the libvncclient/rfbproto.c ConnectToRFBRepeater function.

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2020-14396

Disclosure Date: June 17, 2020 (last updated February 21, 2025)

An issue was discovered in LibVNCServer before 0.9.13. libvncclient/tls_openssl.c has a NULL pointer dereference.

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2020-14402

Disclosure Date: June 17, 2020 (last updated February 21, 2025)

An issue was discovered in LibVNCServer before 0.9.13. libvncserver/corre.c allows out-of-bounds access via encodings.

Attack Vector: Network Privileges: Low User Interaction: None

Attacker Value

Unknown

CVE-2020-14403

Disclosure Date: June 17, 2020 (last updated February 21, 2025)

An issue was discovered in LibVNCServer before 0.9.13. libvncserver/hextile.c allows out-of-bounds access via encodings.

Attack Vector: Network Privileges: Low User Interaction: None

Attacker Value

Unknown

CVE-2020-14398

Disclosure Date: June 17, 2020 (last updated February 21, 2025)

An issue was discovered in LibVNCServer before 0.9.13. An improperly closed TCP connection causes an infinite loop in libvncclient/sockets.c.

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2019-20840

Disclosure Date: June 17, 2020 (last updated February 21, 2025)

An issue was discovered in LibVNCServer before 0.9.13. libvncserver/ws_decode.c can lead to a crash because of unaligned accesses in hybiReadAndDecode.

Attack Vector: Network Privileges: None User Interaction: None