CVE-2008-0610

2008-02-06T12:00:00
ID CVE-2008-0610
Type cve
Reporter cve@mitre.org
Modified 2012-08-14T02:37:00

Description

Stack-based buffer overflow in the ClientConnection::NegotiateProtocolVersion function in vncviewer/ClientConnection.cpp in vncviewer for UltraVNC 1.0.2 and 1.0.4 before 01252008, when in LISTENING mode or when using the DSM plugin, allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a modified size value.