CVE-2018-15361
First published: Tue Mar 05 2019(Updated: )
UltraVNC revision 1198 has a buffer underflow vulnerability in VNC client code, which can potentially result in code execution. This attack appears to be exploitable via network connectivity. This vulnerability has been fixed in revision 1199.
Credit: vulnerability@kaspersky.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| UltraVNC | <1.2.2.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2018-15361?
CVE-2018-15361 is classified as a critical vulnerability due to the potential for code execution.
How do I fix CVE-2018-15361?
The vulnerability can be mitigated by upgrading to UltraVNC revision 1199 or later.
What software is affected by CVE-2018-15361?
UltraVNC versions up to 1.2.2.3 are affected by CVE-2018-15361.
Can CVE-2018-15361 be exploited remotely?
Yes, CVE-2018-15361 is exploitable via network connectivity.
What kind of vulnerability is CVE-2018-15361?
CVE-2018-15361 is identified as a buffer underflow vulnerability.
- agent/weakness
- agent/type
- agent/softwarecombine
- agent/references
- agent/severity
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/uvnc
- canonical/ultravnc