Unrated severityNVD Advisory· Published Mar 9, 2019· Updated Sep 16, 2024
CVE-2019-8266
CVE-2019-8266
Description
UltraVNC revision 1207 has multiple out-of-bounds access vulnerabilities connected with improper usage of ClientConnection::Copybuffer function in VNC client code, which can potentially result in code execution. This attack appears to be exploitable via network connectivity. User interaction is required to trigger these vulnerabilities. These vulnerabilities have been fixed in revision 1208.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Kaspersky Lab/UltraVNCv5Range: 1.2.2.3
Patches
Vulnerability mechanics
References
3- cert-portal.siemens.com/productcert/pdf/ssa-927095.pdfmitrex_refsource_CONFIRM
- ics-cert.kaspersky.com/advisories/klcert-advisories/2019/03/01/klcert-19-013-ultravnc-access-of-memory-location-after-end-of-buffer/mitrex_refsource_MISC
- www.us-cert.gov/ics/advisories/icsa-20-161-06mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.