PT-2001-1398 · At&T · Winvnc
Published
2001-03-09
·
Updated
2017-12-19
·
CVE-2001-0167
CVSS v2.0
7.6
High
| Vector | AV:N/AC:H/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions:
AT&T WinVNC versions 3.3.3r7 and earlier
Description:
A buffer overflow issue allows remote attackers to execute arbitrary commands via a long rfbConnFailed packet with a long reason string.
Recommendations:
For versions 3.3.3r7 and earlier, at the moment, there is no information about a newer version that contains a fix for this issue.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Winvnc