QwikSec

Security Database

CVE

CWE

Training

CVE-2008-5001

Published: Nov 10, 2008

Modified: Aug 7, 2024

PUBLISHED

Description

Multiple stack-based buffer overflows in multiple functions in vncviewer/FileTransfer.cpp in vncviewer for UltraVNC 1.0.2 and 1.0.4 before 01252008, when in LISTENING mode or when using the DSM plugin, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified parameters, a different issue than CVE-2008-0610.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vdb-entry

x_refsource_BID

http://sourceforge.net/project/shownotes.php?release_id=571174&group_id=63887

x_refsource_CONFIRM

vdb-entry

x_refsource_VUPEN

http://ultravnc.svn.sourceforge.net/viewvc/ultravnc/UltraVNC%20Project%20Root/UltraVNC/vncviewer/FileTransfer.cpp?view=log#rev183

x_refsource_CONFIRM

http://forum.ultravnc.info/viewtopic.php?p=45150#45150

x_refsource_CONFIRM

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.