CVE-2020-15117

Summary

In Synergy before version 1.12.0, a Synergy server can be crashed by receiving a kMsgHelloBack packet with a client name length set to 0xffffffff (4294967295) if the servers memory is less than 4 GB. It was verified that this issue does not cause a crash through the exception handler if the available memory of the Server is more than 4GB.

Affected Software

VendorProductVersion RangeStatus
symlesssynergy-core< 1.12.0affected

Weaknesses

  • CWE-755: {"CWE-755":"Improper Handling of Exceptional Conditions"}

ADP Enrichment

CVE Program Container

Additional References

References