CVE-2019-8272
First published: Fri Mar 01 2019(Updated: )
UltraVNC revision 1211 has multiple off-by-one vulnerabilities in VNC server code, which can potentially result in code execution. This attack appears to be exploitable via network connectivity. These vulnerabilities have been fixed in revision 1212.
Credit: vulnerability@kaspersky.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Uvnc Ultravnc | <1.2.2.3 | |
| Siemens Sinumerik Access Mymachine\/p2p | <4.8 | |
| Siemens Sinumerik Pcu Base Win10 Software\/ipc | <14.00 | |
| Siemens Sinumerik Pcu Base Win7 Software\/ipc | <=12.01 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/type
- agent/tags
- agent/event
- agent/description
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- vendor/uvnc
- canonical/uvnc ultravnc
- vendor/siemens
- canonical/siemens sinumerik access mymachine\/p2p
- canonical/siemens sinumerik pcu base win10 software\/ipc
- canonical/siemens sinumerik pcu base win7 software\/ipc
- version/siemens sinumerik pcu base win7 software\/ipc/12.01