Lucene search
HistoryMay 03, 2001 - 4:00 a.m.
CVE-2001-0167
buffer overflow
winvnc
remote attacker
arbitrary commands
cve-2001-0167
7.6 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
7.8 High
AI Score
Confidence
High
0.095 Low
EPSS
Percentile
94.8%
Buffer overflow in AT&T WinVNC (Virtual Network Computing) client 3.3.3r7 and earlier allows remote attackers to execute arbitrary commands via a long rfbConnFailed packet with a long reason string.
Affected configurations
Node
attwinvncRange≤3.3.3r7
| CPE | Name | Operator | Version |
|---|---|---|---|
| att:winvnc | att winvnc | le | 3.3.3r7 |
Related
packetstorm
packetstorm
RealVNC 3.3.7 Client Buffer Overflow
2009-11-26 00:00:00
nvd
nvd
CVE-2001-0167
2001-05-03 04:00:00
cvelist
cvelist
CVE-2001-0167
2001-03-09 05:00:00
7.6 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
7.8 High
AI Score
Confidence
High
0.095 Low
EPSS
Percentile
94.8%
Related for CVE-2001-0167