** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2019-15679. Reason: This candidate is a duplicate of CVE-2019-15679. Notes: All CVE users should reference CVE-2019-15679 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2019-15679. Reason: This candidate is a duplicate of CVE-2019-15679. Notes: All CVE users should reference CVE-2019-15679 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.

In TightVNC 1.3.10, there is an integer signedness error and resultant heap-based buffer overflow in InitialiseRFBConnection in rfbproto.c (for the vncviewer component). There is no check on the size given to malloc, e.g., -1 is accepted. This allocates a chunk of size zero, which will give a heap pointer. However, one can send 0xffffffff bytes of data, which can have a DoS impact or lead to remote code execution.

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2019-15679. Reason: This candidate is a duplicate of CVE-2019-15679. Notes: All CVE users should reference CVE-2019-15679 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.

https://github.com/MaherAzzouzi/CVE-2022-23967 [Third Party Advisory]

https://www.tightvnc.com/licensing-server-x11.php [Vendor Advisory]

OR
     *cpe:2.3:a:tightvnc:tightvnc:1.3.10:*:*:*:*:*:*:*

NIST (AV:N/AC:L/Au:N/C:P/I:P/A:P)

NIST AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

NIST CWE-787

https://github.com/MaherAzzouzi/CVE-2022-23967 No Types Assigned

https://github.com/MaherAzzouzi/CVE-2022-23967 Third Party Advisory

https://www.tightvnc.com/licensing-server-x11.php No Types Assigned

https://www.tightvnc.com/licensing-server-x11.php Vendor Advisory