PT-2023-30393 · Unknown+1 · Mprivacy-Tools+1

Daniel Hirschberger

Published

2023-11-22

Updated

2023-11-30

CVE-2023-47251

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Name of the Vulnerable Software and Affected Versions mprivacy-tools versions prior to 2.0.406g

Description A Directory Traversal issue in the print function of the VNC service allows authenticated attackers with access to a VNC session to transfer malicious PDF documents. This is done by moving the documents into the .spool directory and then sending a signal to the VNC service, which automatically transfers them to the connected VNC client's filesystem.

Recommendations For versions prior to 2.0.406g, update to version 2.0.406g or later to resolve the issue. As a temporary workaround, consider restricting access to the VNC service or disabling the print function to minimize the risk of exploitation.

Exploit

Fix

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

CVE-2023-47251

Affected Products

Vnc

Mprivacy-Tools

PT-2023-30393 · Unknown+1 · Mprivacy-Tools+1

CVE-2023-47251

Weakness Enumeration

Related Identifiers

Affected Products

References · 8