CVE-2018-7225

CWE-190Integer OverflowCWE-80515 documents8 sources
Severity
9.8CRITICAL
EPSS
3.3%
top 12.87%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
9
Libvncserver Project LibvncserverCanonical Ubuntu LinuxDebian Debian Linux+6 more
Timeline
PublishedFeb 19
Latest updateMay 13

Description

An issue was discovered in LibVNCServer through 0.9.11. rfbProcessClientNormalMessage() in rfbserver.c does not sanitize msg.cct.length, leading to access to uninitialized and potentially sensitive data or possibly unspecified other impact (e.g., an integer overflow) via specially crafted VNC packets.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages8 packages

Debianlibvncserver< 0.9.11+dfsg-1.1+3
Debianvino< 3.22.0-6+1
Ubuntuvino< 3.8.1-0ubuntu9.3+2
Debiantightvnc< 1:1.3.9-9.1+3

Also affects: Debian Linux 7.0, 8.0, 9.0, Ubuntu Linux 14.04, 16.04, 17.10, Enterprise Linux 7.6, 7.5

🔴Vulnerability Details

5
GHSA
GHSA-2v5x-9xhg-52hm: An issue was discovered in LibVNCServer through 02022-05-13
OSV
vino vulnerabilities2020-10-07
OSV
italc vulnerabilities2020-09-28
OSV
CVE-2018-7225: An issue was discovered in LibVNCServer through 02018-02-19
CVEList
CVE-2018-7225: An issue was discovered in LibVNCServer through 02018-02-19

📋Vendor Advisories

6
Ubuntu
iTALC vulnerabilities2020-10-20
Ubuntu
Vino vulnerabilities2020-10-07
Ubuntu
iTALC vulnerabilities2020-09-28
Ubuntu
LibVNCServer vulnerability2018-04-04
Red Hat
libvncserver: Improper input sanitization in rfbProcessClientNormalMessage in rfbserver.c2018-02-18

💬Community

3
Bugzilla
CVE-2018-7225 libvncserver: Improper input sanitization in rfbProcessClientNormalMessage in rfbserver.c [epel-7]2018-02-19
Bugzilla
CVE-2018-7225 libvncserver: Improper input sanitization in rfbProcessClientNormalMessage in rfbserver.c2018-02-19
Bugzilla
CVE-2018-7225 libvncserver: Improper input sanitization in rfbProcessClientNormalMessage in rfbserver.c [fedora-all]2018-02-19