Fluid Attacks Database

Description

server.c in Neat VNC (aka neatvnc) before 0.8.1 does not properly validate the security type, a related issue to CVE-2006-2369.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 12	neatvnc	=0.5.4+dfsg-1 \|\| =0.5.4+dfsg-2~exp1 \|\| =0.6.0+dfsg-1 \|\| =0.6.0+dfsg-2 \|\| =0.6.0+dfsg-3 \|\| =0.6.0+dfsg-4 \|\| =0.7.0+dfsg-1 \|\| =0.7.0+dfsg-1~exp1 \|\| =0.7.1+dfsg-1 \|\| =0.7.1+dfsg-2 \|\| =0.8.0+dfsg-1 \|\| =0.8.0+dfsg-2 \|\| =0.8.0+dfsg-3 \|\| =0.9.1+dfsg-1	-
debian 13	neatvnc	>=0 <0.8.0+dfsg-2	0.8.0+dfsg-2
debian 14	neatvnc	>=0 <0.8.0+dfsg-2	0.8.0+dfsg-2

Aliases

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.