CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-5304

A NULL pointer dereference flaw was found in the way LibVNCServer before 0.9.9 handled certain ClientCutText message. A remote attacker could use this flaw to crash the VNC server by sending a specially crafted ClientCutText message from a VNC client.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.034

EPSS Ranking 86.7%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

Products affected by CVE-2010-5304

Libvncserver Project » Libvncserver » Version: 0.9.4

cpe:2.3:a:libvncserver_project:libvncserver:0.9.4
Libvncserver Project » Libvncserver » Version: 0.9.5

cpe:2.3:a:libvncserver_project:libvncserver:0.9.5
Libvncserver Project » Libvncserver » Version: 0.9.6

cpe:2.3:a:libvncserver_project:libvncserver:0.9.6
Libvncserver Project » Libvncserver » Version: 0.9.7

cpe:2.3:a:libvncserver_project:libvncserver:0.9.7
Libvncserver Project » Libvncserver » Version: 0.9.8

cpe:2.3:a:libvncserver_project:libvncserver:0.9.8
Libvncserver Project » Libvncserver » Version: 0.9.8.1

cpe:2.3:a:libvncserver_project:libvncserver:0.9.8.1
Libvncserver Project » Libvncserver » Version: 0.9.8.2

cpe:2.3:a:libvncserver_project:libvncserver:0.9.8.2
Fedoraproject » Fedora » Version: 19

cpe:2.3:o:fedoraproject:fedora:19
Fedoraproject » Fedora » Version: 20

cpe:2.3:o:fedoraproject:fedora:20
Fedoraproject » Fedora » Version: 21

cpe:2.3:o:fedoraproject:fedora:21

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-5304

Products

Pricing

Contact Us