Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9
CVSSv2

CVE-2006-1652

Published: 06/04/2006 Updated: 18/10/2018
CVSS v2 Base Score: 9 | Impact Score: 10 | Exploitability Score: 8
VMScore: 915
Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C
Subscribe to Vnc Viewer

Vulnerability Summary

Multiple buffer overflows in (a) UltraVNC (aka Ultr@VNC) 1.0.1 and previous versions and (b) tabbed_viewer 1.29 (1) allow user-assisted remote malicious users to execute arbitrary code via a malicious server that sends a long string to a client that connects on TCP port 5900, which triggers an overflow in Log::ReallyPrint; and (2) allow remote malicious users to cause a denial of service (server crash) via a long HTTP GET request to TCP port 5800, which triggers an overflow in VNCLog::ReallyPrint.

Vulnerable Product Search on Vulmon Subscribe to Product

ultravnc vnc viewer 1.0.1

ultravnc tabbed viewer 1.29

Exploits

Exploit DB: UltraVNC 1.0.1 - Client Buffer Overflow (Metasploit)
## # $Id: ultravnc_clientrb 9179 2010-04-30 08:40:19Z jduck $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## class Metasploit3 < Msf ...
Exploit DB: UltraVNC 1.0.1 - Multiple Remote Error Logging Buffer Overflow Vulnerabilities (2)
source: wwwsecurityfocuscom/bid/17378/info UltraVNC is susceptible to multiple error-logging remote buffer-overflow vulnerabilities These issues are due to the application's failure to properly bounds-check user-supplied input before copying it to insufficiently sized memory buffers A successful attack may allow remote attackers to e ...
Exploit DB: UltraVNC 1.0.1 - Multiple Remote Error Logging Buffer Overflow Vulnerabilities (1)
source: wwwsecurityfocuscom/bid/17378/info UltraVNC is susceptible to multiple error-logging remote buffer-overflow vulnerabilities These issues are due to the application's failure to properly bounds-check user-supplied input before copying it to insufficiently sized memory buffers A successful attack may allow remote attackers to exe ...

References

CWE-119http://www.securityfocus.com/bid/17378http://secunia.com/advisories/19513http://lists.grok.org.uk/pipermail/full-disclosure/2006-April/044901.htmlhttp://securityreason.com/securityalert/674http://www.vupen.com/english/advisories/2006/1240https://exchange.xforce.ibmcloud.com/vulnerabilities/25650https://exchange.xforce.ibmcloud.com/vulnerabilities/25648https://www.exploit-db.com/exploits/1643https://www.exploit-db.com/exploits/1642http://www.securityfocus.com/archive/1/430711/100/0/threadedhttp://www.securityfocus.com/archive/1/430287/100/0/threadedhttp://www.securityfocus.com/archive/1/429930/100/0/threadedhttps://nvd.nist.govhttps://www.exploit-db.com/exploits/16490/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereferenceCVE-2023-52689CVE-2024-23803client sideCVE-2023-52696information disclosureCVE-2024-35843CVE-2024-27130CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook