Detections
Analytics

UltraVNC < 1.2.2.4 Multiple Vulnerabilities

critical Nessus Plugin ID 252271

Synopsis

A remote desktop application installed on the remote Windows host is affected by a multiple vulnerabilities.

Description

The version of UltraVNC Service installed on the remote Windows host is prior to 1.2.2.4. It is, therefore, affected by multiple vulnerabilities:

 - UltraVNC revision 1203 has out-of-bounds access vulnerability in VNC client inside RAW decoder, which can potentially result code execution. This attack appear to be exploitable via network connectivity. This vulnerability has been fixed in revision 1204. (CVE-2019-8280)
- UltraVNC revision 1211 has multiple improper null termination vulnerabilities in VNC server code, which result in out-of-bound data being accessed by remote users. This attack appears to be exploitable via network connectivity. These vulnerabilities have been fixed in revision 1212. (CVE-2019-8275)
- UltraVNC revision 1211 has a heap buffer overflow vulnerability in VNC server code inside file transfer offer handler, which can potentially in result code execution. This attack appears to be exploitable via network connectivity. This vulnerability has been fixed in revision 1212. (CVE-2019-8274)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Solution

Upgrade to UltraVNC version 1.2.2.4 or later.

See Also

https://cert-portal.siemens.com/productcert/pdf/ssa-927095.pdf

Plugin Details

Severity: Critical

ID: 252271

File Name: ultravnc_1_2_2_4.nasl

Version: 1.1

Type: local

Agent: windows

Family: Windows

Published: 8/19/2025

Updated: 8/19/2025

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Critical

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2019-8280

CVSS v3

Risk Factor: Critical

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vulnerability Information

CPE: cpe:/a:ultravnc:ultravnc

Required KB Items: SMB/Registry/Enumerated, installed_sw/UltraVNC

Patch Publication Date: 3/8/2019

Vulnerability Publication Date: 3/8/2019

Reference Information

CVE: CVE-2018-15361, CVE-2019-8258, CVE-2019-8259, CVE-2019-8260, CVE-2019-8261, CVE-2019-8262, CVE-2019-8263, CVE-2019-8264, CVE-2019-8265, CVE-2019-8266, CVE-2019-8267, CVE-2019-8268, CVE-2019-8269, CVE-2019-8270, CVE-2019-8271, CVE-2019-8272, CVE-2019-8273, CVE-2019-8274, CVE-2019-8275, CVE-2019-8276, CVE-2019-8277, CVE-2019-8280