CVE-2013-5745
published 2013-10-01CVE-2013-5745: The vino_server_client_data_pending function in vino-server.c in GNOME Vino 2.26.1, 2.32.1, 3.7.3, and earlier, and 3.8 when encryption is disabled, does not…
PriorityP345high7.1CVSS 2.0
AVNACMAuNCNINAC
EXPLOIT
EPSS
8.72%
94.5th percentile
The vino_server_client_data_pending function in vino-server.c in GNOME Vino 2.26.1, 2.32.1, 3.7.3, and earlier, and 3.8 when encryption is disabled, does not properly clear client data when an error causes the connection to close during authentication, which allows remote attackers to cause a denial of service (infinite loop, CPU and disk consumption) via multiple crafted requests during authentication.
Affected
125 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| david_king | vino | <= 3.7.3 | — |
| david_king | vino | — | — |
| david_king | vino | — | — |
| david_king | vino | — | — |
| david_king | vino | — | — |
| david_king | vino | — | — |
| david_king | vino | — | — |
| david_king | vino | — | — |
| david_king | vino | — | — |
| david_king | vino | — | — |
| david_king | vino | — | — |
| david_king | vino | — | — |
| david_king | vino | — | — |
| david_king | vino | — | — |
| david_king | vino | — | — |
| david_king | vino | — | — |
| david_king | vino | — | — |
| david_king | vino | — | — |
| david_king | vino | — | — |
| david_king | vino | — | — |
| david_king | vino | — | — |
| david_king | vino | — | — |
CVSS provenance
nvdv2.07.1HIGHAV:N/AC:M/Au:N/C:N/I:N/A:C
osv7.1HIGH
vendor_debian7.1LOW
vendor_redhat7.1HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
Vino vulnerability
vendor_ubuntu·2013-09-30
CVE-2013-5745 Vino vulnerability
Title: Vino vulnerability
Summary: Vino could be made to hang if it received specially crafted network
traffic.
Jonathan Claudius discovered that Vino incorrectly handled closing invalid
connections. A remote attacker could use this issue to cause Vino to
consume resources, resulting in a denial of service.
Instructions: After a standard system update you need to restart your session to make all
the necessary changes.
Debian
CVE-2013-5745: vino - The vino_server_client_data_pending function in vino-server.c in GNOME Vino 2.26...
vendor_debian·2013·CVSS 7.1
CVE-2013-5745 [HIGH] CVE-2013-5745: vino - The vino_server_client_data_pending function in vino-server.c in GNOME Vino 2.26...
The vino_server_client_data_pending function in vino-server.c in GNOME Vino 2.26.1, 2.32.1, 3.7.3, and earlier, and 3.8 when encryption is disabled, does not properly clear client data when an error causes the connection to close during authentication, which allows remote attackers to cause a denial of service (infinite loop, CPU and disk consumption) via multiple crafted requests during authentication.
Scope: local
bookworm: resolved (fixed in 3.10.1-1)
bullseye: resolved (fixed in 3.10.1-1)
Red Hat
vino: denial of service flaw
vendor_redhat·2010-04-21·CVSS 7.1
CVE-2013-5745 [HIGH] CWE-400 vino: denial of service flaw
vino: denial of service flaw
The vino_server_client_data_pending function in vino-server.c in GNOME Vino 2.26.1, 2.32.1, 3.7.3, and earlier, and 3.8 when encryption is disabled, does not properly clear client data when an error causes the connection to close during authentication, which allows remote attackers to cause a denial of service (infinite loop, CPU and disk consumption) via multiple crafted requests during authentication.
Package: vino (Red Hat Enterprise Linux 7) - Not affected
GHSA
GHSA-vjj5-vm4p-gf6m: The vino_server_client_data_pending function in vino-server
ghsa_unreviewed·2022-05-17
CVE-2013-5745 [HIGH] CWE-20 GHSA-vjj5-vm4p-gf6m: The vino_server_client_data_pending function in vino-server
The vino_server_client_data_pending function in vino-server.c in GNOME Vino 2.26.1, 2.32.1, 3.7.3, and earlier, and 3.8 when encryption is disabled, does not properly clear client data when an error causes the connection to close during authentication, which allows remote attackers to cause a denial of service (infinite loop, CPU and disk consumption) via multiple crafted requests during authentication.
OSV
CVE-2013-5745: The vino_server_client_data_pending function in vino-server
osv·2013-10-01·CVSS 7.1
CVE-2013-5745 [HIGH] CVE-2013-5745: The vino_server_client_data_pending function in vino-server
The vino_server_client_data_pending function in vino-server.c in GNOME Vino 2.26.1, 2.32.1, 3.7.3, and earlier, and 3.8 when encryption is disabled, does not properly clear client data when an error causes the connection to close during authentication, which allows remote attackers to cause a denial of service (infinite loop, CPU and disk consumption) via multiple crafted requests during authentication.
No detection rules found.
Bugzilla
CVE-2013-5745 vino: denial of service flaw [fedora-all]
bugzilla·2013-09-16·CVSS 7.1
CVE-2013-5745 [HIGH] CVE-2013-5745 vino: denial of service flaw [fedora-all]
CVE-2013-5745 vino: denial of service flaw [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please use the bodhi submission link
noted in the next comment(s). This will include the bug IDs of this
tracking bug as well as the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
Bodhi notes field when available.
Please note: this issue affects multiple supporte
Bugzilla
CVE-2013-5745 vino: denial of service flaw
bugzilla·2013-02-11·CVSS 7.1
CVE-2013-5745 [HIGH] CVE-2013-5745 vino: denial of service flaw
CVE-2013-5745 vino: denial of service flaw
Description of problem:
I have vino set to require a password. The system is on a publicly accessible machine. One morning I arrived to find / full and vino-server using inordinate amounts of CPU. In trying to find free space I also noticed that soon after freeing space, it would get used up. (Which is when I looked at what processes were running and found vino using too much CPU for not having a client connected).
In the end I found that ~/.cache/gdm/session.log was 669G. A message was repeated "AM Authentication deferred - ignoring client message".
It was repeating 80 000 per second in the log file.
Thus Vino should introduce some form of rate limiting or other related features to help avoid this situation. It would also be nice if it could
http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00003.htmlhttp://rhn.redhat.com/errata/RHSA-2013-1452.htmlhttp://secunia.com/advisories/55090http://www.ubuntu.com/usn/USN-1980-1https://bugzilla.gnome.org/show_bug.cgi?id=641811https://bugzilla.gnome.org/show_bug.cgi?id=707905https://www.trustwave.com/spiderlabs/advisories/TWSL2013-028.txthttp://lists.opensuse.org/opensuse-security-announce/2013-11/msg00003.htmlhttp://rhn.redhat.com/errata/RHSA-2013-1452.htmlhttp://secunia.com/advisories/55090http://www.ubuntu.com/usn/USN-1980-1https://bugzilla.gnome.org/show_bug.cgi?id=641811https://bugzilla.gnome.org/show_bug.cgi?id=707905https://www.trustwave.com/spiderlabs/advisories/TWSL2013-028.txt
2013-10-01
Published