GNOME vinagre up to 2.24.1 vinagre_utils_show_error format string
| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 6.6 | $0-$5k | 0.00 |
Summary
A vulnerability was found in GNOME vinagre up to 2.24.1 and classified as critical. This impacts the function vinagre_utils_show_error. Such manipulation leads to format string.
This vulnerability is referenced as CVE-2008-5660. Furthermore, an exploit is available.
It is suggested to upgrade the affected component.
Details
A vulnerability, which was classified as critical, has been found in GNOME vinagre up to 2.24.1. Affected by this issue is the function vinagre_utils_show_error. The manipulation with an unknown input leads to a format string vulnerability. Using CWE to declare the problem leads to CWE-134. The product uses a function that accepts a format string as an argument, but the format string originates from an external source. Impacted is confidentiality, integrity, and availability. CVE summarizes:
Format string vulnerability in the vinagre_utils_show_error function (src/vinagre-utils.c) in Vinagre 0.5.x before 0.5.2 and 2.x before 2.24.2 might allow remote attackers to execute arbitrary code via format string specifiers in a crafted URI or VNC server response.
The bug was discovered 12/05/2008. The weakness was published 12/17/2008 (Website). The advisory is shared for download at redhat.com. This vulnerability is handled as CVE-2008-5660 since 12/17/2008. The attack may be launched remotely. No form of authentication is required for exploitation. Technical details as well as a public exploit are known.
A public exploit has been developed in Python. The exploit is available at securityfocus.com. It is declared as proof-of-concept. The vulnerability was handled as a non-public zero-day exploit for at least 12 days. During that time the estimated underground price was around $0-$5k. The vulnerability scanner Nessus provides a plugin with the ID 40148 (openSUSE Security Update : vinagre (vinagre-402)), which helps to determine the existence of the flaw in a target environment. It is assigned to the family SuSE Local Security Checks and running in the context l. The commercial vulnerability scanner Qualys is able to test this issue with plugin 116130 (SUSE Update for Multiple Packages (SUSE-SR:2009:001)).
Upgrading to version 2.23.4 eliminates this vulnerability. A possible mitigation has been published 4 weeks after the disclosure of the vulnerability.
The vulnerability is also documented in the databases at X-Force (47156), Exploit-DB (7401), Tenable (40148), SecurityFocus (BID 32682†) and OSVDB (50520†). VulDB is the best source for vulnerability data and more expert information about this specific topic.
Product
Vendor
Name
Version
License
Website
- Vendor: https://www.gnome.org/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 7.3VulDB Meta Temp Score: 6.6
VulDB Base Score: 7.3
VulDB Temp Score: 6.6
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Format stringCWE: CWE-134 / CWE-119
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Access: Public
Status: Proof-of-Concept
Programming Language: 🔍
Download: 🔍
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Nessus ID: 40148
Nessus Name: openSUSE Security Update : vinagre (vinagre-402)
Nessus File: 🔍
Nessus Risk: 🔍
Nessus Family: 🔍
Nessus Context: 🔍
Nessus Port: 🔍
OpenVAS ID: 63092
OpenVAS Name: FreeBSD Ports: vinagre
OpenVAS File: 🔍
OpenVAS Family: 🔍
Qualys ID: 🔍
Qualys Name: 🔍
Exploit-DB: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
Reaction Time: 🔍
0-Day Time: 🔍
Exposure Time: 🔍
Upgrade: vinagre 2.23.4
Timeline
12/05/2008 🔍12/05/2008 🔍
12/08/2008 🔍
12/08/2008 🔍
12/16/2008 🔍
12/17/2008 🔍
12/17/2008 🔍
12/17/2008 🔍
01/08/2009 🔍
07/21/2009 🔍
03/17/2015 🔍
05/29/2025 🔍
Sources
Vendor: gnome.orgAdvisory: redhat.com
Status: Confirmed
Confirmation: 🔍
CVE: CVE-2008-5660 (🔍)
GCVE (CVE): GCVE-0-2008-5660
GCVE (VulDB): GCVE-100-45560
X-Force: 47156
SecurityFocus: 32682 - Vinagre 'vinagre_utils_show_error()' Function Format String Vulnerability
Secunia: 33046 - Fedora update for vinagre, Moderately Critical
OSVDB: 50520 - CVE-2008-5660 - Vinagre - Format String Issue
Vulnerability Center: 20245 - GNOME Vinagre 0.5 and 2.24.0 Remote Code Execution or DoS via a Crafted .VNC File, Medium
Vupen: ADV-2008-3362
scip Labs: https://www.scip.ch/en/?labs.20161013
Entry
Created: 03/17/2015 16:11Updated: 05/29/2025 16:04
Changes: 03/17/2015 16:11 (79), 08/22/2019 11:31 (10), 11/18/2024 00:23 (19), 05/29/2025 16:04 (4)
Complete: 🔍
Cache ID: 216:0EB:103
VulDB is the best source for vulnerability data and more expert information about this specific topic.
No comments yet. Languages: en.
Please log in to comment.