Stack-based buffer overflow in the ClientConnection::NegotiateProtocolVersion function in vncviewer/ClientConnection.cpp in vncviewer for UltraVNC 1.0.2 and 1.0.4 prior to 01252008, when in LISTENING mode or when using the DSM plugin, allows remote malicious users to execute arbitrary code or cause a denial of service (crash) via a modified size value.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ultravnc ultravnc 1.0.4_rc7 |
||
ultravnc ultravnc 1.0.4_rc8 |
||
ultravnc ultravnc 1.0.4 |
||
ultravnc ultravnc 1.0.4_rc6 |
||
ultravnc ultravnc 1.0.2 |