Summary
The remote host is missing an update to vino
announced via advisory DSA 2238-1.
Solution
https://secure1.securityspace.com/smysecure/catid.html?in=DSA%202238-1
Insight
Kevin Chen discovered that incorrect processing of framebuffer requests in the Vino VNC server could lead to denial of service.
For the stable distribution (squeeze), this problem has been fixed in version 2.28.2-2+squeeze1.
For the unstable distribution (sid), this problem has been fixed in version 2.28.2-3.
We recommend that you upgrade your vino packages.
Severity
Classification
-
CVE CVE-2011-0904, CVE-2011-0905 -
CVSS Base Score: 3.5
AV:N/AC:M/Au:S/C:N/I:N/A:P
Related Vulnerabilities