VYPR
Critical severity9.8NVD Advisory· Published Dec 31, 2016· Updated Jun 17, 2026

CVE-2016-9942

CVE-2016-9942

Description

Heap-based buffer overflow in ultra.c in LibVNCClient in LibVNCServer before 0.9.11 allows remote servers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted FramebufferUpdate message with the Ultra type tile, such that the LZO payload decompressed length exceeds what is specified by the tile dimensions.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

19

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.