CVE-2009-3616
- Reference to the description:
- Description:
- Multiple use-after-free vulnerabilities in vnc.c in the VNC server in QEMU 0.10.6 and earlier might allow guest OS users to execute arbitrary code on the host OS by establishing a connection from a VNC client and then (1) disconnecting during data transfer, (2) sending a message using incorrect integer data types, or (3) using the Fuzzy Screen Mode protocol, related to double free vulnerabilities.
- Last updated date:
- 02/15/2024
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 11/02/2020
- Reference url to background
http://git.savannah.gnu.org/cgit/qemu.git/commit/?id=198a0039c5
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 11/02/2020
- Reference url to background
http://git.savannah.gnu.org/cgit/qemu.git/commit/?id=753b405331
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 02/15/2024
- Reference url to background