VYPR
Unrated severityNVD Advisory· Published Sep 24, 2002· Updated Jun 16, 2026

CVE-2002-0971

CVE-2002-0971

Description

Vulnerability in VNC, TightVNC, and TridiaVNC allows local users to execute arbitrary code as LocalSystem by using the Win32 Messaging System to bypass the VNC GUI and access the "Add new clients" dialogue box.

Affected products

11
  • Att/Winvnc Server2 versions
    cpe:2.3:a:att:winvnc_server:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:att:winvnc_server:*:*:*:*:*:*:*:*range: <=3.3.3_r9
    • cpe:2.3:a:att:winvnc_server:3.3.3_r7:*:*:*:*:*:*:*
  • Tightvnc/Tightvnc4 versions
    cpe:2.3:a:tightvnc:tightvnc:1.2.0:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:tightvnc:tightvnc:1.2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:tightvnc:tightvnc:1.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:tightvnc:tightvnc:1.2.5:*:*:*:*:*:*:*
    • (no CPE)
  • Tridia/Tridiavnc5 versions
    cpe:2.3:a:tridia:tridiavnc:1.5:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:tridia:tridiavnc:1.5:*:*:*:*:*:*:*
    • cpe:2.3:a:tridia:tridiavnc:1.5.1:*:*:*:*:*:*:*
    • cpe:2.3:a:tridia:tridiavnc:1.5.2:*:*:*:*:*:*:*
    • cpe:2.3:a:tridia:tridiavnc:1.5.4:*:*:*:*:*:*:*
    • (no CPE)

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.