Total vulnerabilities in the database
The rfbProcessClientNormalMessage function in libvncserver/rfbserver.c in LibVNCServer 0.9.9 and earlier allows remote attackers to cause a denial of service (divide-by-zero error and server crash) via a zero value in the scaling factor in a (1) PalmVNCSetScaleFactor or (2) SetScale message.
| Software | From | Fixed in |
|---|---|---|
| libvncserver / libvncserver | - | 0.9.9.x |
| debian / debian_linux | 7.0 | 7.0.x |
| canonical / ubuntu_linux | 12.04 | 12.04.x |
| canonical / ubuntu_linux | 14.04 | 14.04.x |