UltraVNC revision 1206 has stack-based Buffer overflow vulnerability in VNC client code inside FileTransfer module, which leads to a denial of service (DoS) condition. This attack appear to be exploitable via network connectivity. This vulnerability has been fixed in revision 1207.
References
Link | Resource |
---|---|
https://cert-portal.siemens.com/productcert/pdf/ssa-927095.pdf | Third Party Advisory |
https://ics-cert.kaspersky.com/advisories/klcert-advisories/2019/03/01/klcert-19-016-ultravnc-stack-based-buffer-overflow/ | Third Party Advisory |
https://www.us-cert.gov/ics/advisories/icsa-20-161-06 | Third Party Advisory US Government Resource |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Kaspersky
Published: 2019-03-01T00:00:00
Updated: 2020-06-12T20:52:57
Reserved: 2019-02-12T00:00:00
Link: CVE-2019-8269
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-03-08T23:29:00.657
Modified: 2020-10-19T17:56:47.387
Link: CVE-2019-8269
JSON object: View
Redhat Information
No data.