Security Advisory

CVE-2019-8268

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-03-09 00:00:00

Last updated 2024-09-17 01:16:16

Assigner Kaspersky

State PUBLISHED

Description

UltraVNC revision 1206 has multiple off-by-one vulnerabilities in VNC client code connected with improper usage of ClientConnection::ReadString function, which can potentially result code execution. This attack appears to be exploitable via network connectivity. These vulnerabilities have been fixed in revision 1207.

← Browse all CVEs View on cve.org ↗