CVE-2008-5660

Format string vulnerability in the vinagre_utils_show_error function (src/vinagre-utils.c) in Vinagre 0.5.x before 0.5.2 and 2.x before 2.24.2 might allow remote attackers to execute arbitrary code via format string specifiers in a crafted URI or VNC server response.
Configurations

Configuration 1

cpe:2.3:a:gnome:vinagre:0.5.0:*:*:*:*:*:*:*
cpe:2.3:a:gnome:vinagre:2.23.2:*:*:*:*:*:*:*
cpe:2.3:a:gnome:vinagre:2.23.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:vinagre:2.23.4:*:*:*:*:*:*:*
cpe:2.3:a:gnome:vinagre:0.5.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:vinagre:2.23.92:*:*:*:*:*:*:*
cpe:2.3:a:gnome:vinagre:2.24.1:*:*:*:*:*:*:*
cpe:2.3:a:gnome:vinagre:2.24.0:*:*:*:*:*:*:*
cpe:2.3:a:gnome:vinagre:2.23.3:*:*:*:*:*:*:*
cpe:2.3:a:gnome:vinagre:2.23.91:*:*:*:*:*:*:*
cpe:2.3:a:gnome:vinagre:2.23.90:*:*:*:*:*:*:*
cpe:2.3:a:gnome:vinagre:2.23.3.1:*:*:*:*:*:*:*

Information

Published : 2008-12-17 08:30

Updated : 2018-10-11 08:56


NVD link : CVE-2008-5660

Mitre link : CVE-2008-5660

Products Affected
No products.
CWE
CWE-134

Use of Externally-Controlled Format String