Join GitHub today
GitHub is home to over 40 million developers working together to host and review code, manage projects, and build software together.Sign up
SECURITY: heap buffer overflow inside structure in libvncclient #250
I am sure that this issue is exploitable, because I managed to achieve remote code execution in the product which uses libvncclient as a third party for a Proof of Concept.
This security issue is a result of my work at Kaspersky Lab ICS CERT Vulnerability Research Group at position of Security Researcher.
The fix is not correct.
That's why I suggested the following fix:
Right, I get your point. But why the