CVE-2019-8269

UltraVNC revision 1206 has stack-based Buffer overflow vulnerability in VNC client code inside FileTransfer module, which leads to a denial of service (DoS) condition. This attack appear to be exploitable via network connectivity. This vulnerability has been fixed in revision 1207.

Link	Resource
https://ics-cert.kaspersky.com/advisories/klcert-advisories/2019/03/01/klcert-19-016-ultravnc-stack-based-buffer-overflow/	Third Party Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-927095.pdf	Third Party Advisory
https://www.us-cert.gov/ics/advisories/icsa-20-161-06	Third Party Advisory US Government Resource

Configuration 1

cpe:2.3:a:uvnc:ultravnc:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:sinumerik_pcu_base_win7_software/ipc:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:sinumerik_pcu_base_win10_software/ipc:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:sinumerik_access_mymachine/p2p:*:*:*:*:*:*:*:*

---

Published : 2019-03-08 11:29

Updated : 2020-10-19 05:56

---

NVD link : CVE-2019-8269

Mitre link : CVE-2019-8269

No products.

CWE-787