Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1652

Overview

Vulnerability Score 9.0 9.0
CVE Id CVE-2006-1652
Last Modified 07 Mar 2011 12:00:00
Published 06 Apr 2006 06:04:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2006-1652

Summary

Multiple buffer overflows in (a) UltraVNC (aka Ultr@VNC) 1.0.1 and earlier and (b) tabbed_viewer 1.29 (1) allow user-assisted remote attackers to execute arbitrary code via a malicious server that sends a long string to a client that connects on TCP port 5900, which triggers an overflow in Log::ReallyPrint; and (2) allow remote attackers to cause a denial of service (server crash) via a long HTTP GET request to TCP port 5800, which triggers an overflow in VNCLog::ReallyPrint.

Vulnerable Systems

Application

  • Ultravnc Tabbed Viewer 1.29

  • Ultravnc Vnc Viewer 1.0.1


References

XF - ultr@vnc-vnclogreallyprint-bo(25650)

XF - untr@vnc-error-bo(25648)

VUPEN - ADV-2006-1240

BID - 17378

BUGTRAQ - 20060411 Re: Buffer-overflow in Ultr@VNC 1.0.1 viewer POC

BUGTRAQ - 20060405 Re: Buffer-overflow in Ultr@VNC 1.0.1 viewer and server

BUGTRAQ - 20060404 Buffer-overflow in Ultr@VNC 1.0.1 viewer and server

SREASON - 674

SECUNIA - 19513

MILW0RM - 1643

MILW0RM - 1642


Last Updated: 27 May 2016 10:42:09