Search for packages
| purl | pkg:deb/debian/vnc4@4.0-8 |
| Next non-vulnerable version | 4.1.1+X4.3.0+t-1 |
| Latest non-vulnerable version | 4.1.1+X4.3.0+t-1 |
| Risk | 10.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-14t8-vrru-aaaf
Aliases: CVE-2006-2369 |
RealVNC 4.1.1, and other products that use RealVNC such as AdderLink IP and Cisco CallManager, allows remote attackers to bypass authentication via a request in which the client specifies an insecure security type such as "Type 1 - None", which is accepted even if it is not offered by the server, as originally demonstrated using a long password. |
Affected by 3 other vulnerabilities. |
|
VCID-1qu8-fzp6-aaab
Aliases: CVE-2014-0011 |
Multiple heap-based buffer overflows in the ZRLE_DECODE function in common/rfb/zrleDecode.h in TigerVNC before 1.3.1, when NDEBUG is enabled, allow remote VNC servers to cause a denial of service (vncviewer crash) and possibly execute arbitrary code via vectors related to screen image rendering. |
Affected by 0 other vulnerabilities. |
|
VCID-3c18-v2g4-aaaf
Aliases: CVE-2015-2305 |
Integer overflow in the regcomp implementation in the Henry Spencer BSD regex library (aka rxspencer) alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow context-dependent attackers to execute arbitrary code via a large regular expression that leads to a heap-based buffer overflow. |
Affected by 0 other vulnerabilities. |
|
VCID-kmft-crm4-aaaf
Aliases: CVE-2008-4770 |
The CMsgReader::readRect function in the VNC Viewer component in RealVNC VNC Free Edition 4.0 through 4.1.2, Enterprise Edition E4.0 through E4.4.2, and Personal Edition P4.0 through P4.4.2 allows remote VNC servers to execute arbitrary code via crafted RFB protocol data, related to "encoding type." |
Affected by 2 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-21T15:54:09.474434+00:00 | Debian Oval Importer | Affected by | VCID-14t8-vrru-aaaf | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T14:50:20.295384+00:00 | Debian Oval Importer | Affected by | VCID-3c18-v2g4-aaaf | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T13:42:54.059428+00:00 | Debian Oval Importer | Affected by | VCID-1qu8-fzp6-aaab | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T13:40:06.469204+00:00 | Debian Oval Importer | Affected by | VCID-kmft-crm4-aaaf | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T00:19:34.055495+00:00 | Debian Oval Importer | Affected by | VCID-3c18-v2g4-aaaf | None | 36.1.3 |
| 2025-06-20T23:00:12.402287+00:00 | Debian Oval Importer | Affected by | VCID-14t8-vrru-aaaf | None | 36.1.3 |
| 2025-06-20T21:17:34.902686+00:00 | Debian Oval Importer | Affected by | VCID-kmft-crm4-aaaf | None | 36.1.3 |
| 2025-06-20T20:56:16.278797+00:00 | Debian Oval Importer | Affected by | VCID-1qu8-fzp6-aaab | None | 36.1.3 |
| 2025-06-08T08:47:25.637998+00:00 | Debian Oval Importer | Affected by | VCID-14t8-vrru-aaaf | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T07:43:42.197479+00:00 | Debian Oval Importer | Affected by | VCID-3c18-v2g4-aaaf | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T06:37:06.489694+00:00 | Debian Oval Importer | Affected by | VCID-1qu8-fzp6-aaab | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T06:34:21.569730+00:00 | Debian Oval Importer | Affected by | VCID-kmft-crm4-aaaf | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-07T17:42:29.747174+00:00 | Debian Oval Importer | Affected by | VCID-3c18-v2g4-aaaf | None | 36.1.0 |
| 2025-06-07T16:23:23.812488+00:00 | Debian Oval Importer | Affected by | VCID-14t8-vrru-aaaf | None | 36.1.0 |
| 2025-06-07T14:41:20.334325+00:00 | Debian Oval Importer | Affected by | VCID-kmft-crm4-aaaf | None | 36.1.0 |
| 2025-06-07T14:24:19.477020+00:00 | Debian Oval Importer | Affected by | VCID-1qu8-fzp6-aaab | None | 36.1.0 |
| 2025-04-08T07:19:00.372426+00:00 | Debian Oval Importer | Affected by | VCID-14t8-vrru-aaaf | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T06:16:11.699485+00:00 | Debian Oval Importer | Affected by | VCID-3c18-v2g4-aaaf | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T05:09:28.660712+00:00 | Debian Oval Importer | Affected by | VCID-1qu8-fzp6-aaab | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T05:06:38.553216+00:00 | Debian Oval Importer | Affected by | VCID-kmft-crm4-aaaf | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-07T16:18:00.485393+00:00 | Debian Oval Importer | Affected by | VCID-3c18-v2g4-aaaf | None | 36.0.0 |
| 2025-04-07T14:55:12.556384+00:00 | Debian Oval Importer | Affected by | VCID-14t8-vrru-aaaf | None | 36.0.0 |
| 2025-04-07T13:13:22.202159+00:00 | Debian Oval Importer | Affected by | VCID-kmft-crm4-aaaf | None | 36.0.0 |
| 2025-04-07T12:56:46.619722+00:00 | Debian Oval Importer | Affected by | VCID-1qu8-fzp6-aaab | None | 36.0.0 |
| 2024-02-13T17:34:24.363844+00:00 | Debian Oval Importer | Affected by | VCID-14t8-vrru-aaaf | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 34.0.0rc2 |
| 2024-02-13T17:18:20.226567+00:00 | Debian Oval Importer | Affected by | VCID-14t8-vrru-aaaf | None | 34.0.0rc2 |