Boundary Check Vulnerability in gtk-vnc

Boundary Check Vulnerability in gtk-vnc

CVE-2017-5884 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

gtk-vnc before 0.7.0 does not properly check boundaries of subrectangle-containing tiles, which allows remote servers to execute arbitrary code via the src x, y coordinates in a crafted (1) rre, (2) hextile, or (3) copyrect tile.

Learn more about our Cis Benchmark Audit For Server Software.