CVE-2019-8267

Description

UltraVNC revision 1207 has out-of-bounds read vulnerability in VNC client code inside TextChat module, which results in a denial of service (DoS) condition. This attack appears to be exploitable via network connectivity. This vulnerability has been fixed in revision 1208.

References

https://www.us-cert.gov/ics/advisories/icsa-20-161-06

https://ics-cert.kaspersky.com/advisories/klcert-advisories/2019/03/01/klcert-19-014-ultravnc-out-of-bounds-read/

https://cert-portal.siemens.com/productcert/pdf/ssa-927095.pdf

Details

Source: Mitre, NVD

Risk Information

CVSS v2

CVSS v3

EPSS