NVD

Id
82874  
Name
CVE-2017-5884  
Description
gtk-vnc before 0.7.0 does not properly check boundaries of subrectangle-containing tiles, which allows remote servers to execute arbitrary code via the src x, y coordinates in a crafted (1) rre, (2) hextile, or (3) copyrect tile.  
Reject
 
CVSS Version
2  
CVSS Score
6.8  
Severity
Medium  
CVSS Base Score
6.8  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:P/A:P)  
Pub Date
2017-03-18  
Published
2017-02-28  
Modified Date
2017-03-02  
Seq
2017-5884  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
407880 82874 CVE-2016-8954 http://www.ibm.com/support/docview.wss?uid=swg21994471  View
407881 82874 CVE-2016-8954 95628  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
65557 JVNDB-2017-001920 gtk-vnc における任意のコードを実行される脆弱性 gtk-vnc は、subrectangle-containing タイルの境界を適切にチェックしないため、任意のコードを実行される脆弱性が存在します。 CVE-2017-5884 CVE-2017-5884 82874 6.8 7.8 http://jvndb.jvn.jp/ja/contents/2017/JVNDB-2017-001920.html 2017-02-07 2017-03-23 View