Boundary Check Vulnerability in gtk-vnc
CVE-2017-5884 · MEDIUM Severity
AV:N/AC:M/AU:N/C:P/I:P/A:P
gtk-vnc before 0.7.0 does not properly check boundaries of subrectangle-containing tiles, which allows remote servers to execute arbitrary code via the src x, y coordinates in a crafted (1) rre, (2) hextile, or (3) copyrect tile.
Learn more about our Cis Benchmark Audit For Server Software.