GLSA-200903-17 : Real VNC: User-assisted execution of arbitrary code

The remote host is affected by the vulnerability described in GLSA-200903-17 Real VNC: User-assisted execution of arbitrary code An unspecified vulnerability has been discovered int the CMsgReader::readRect function in the VNC Viewer component, related to the encoding type of RFB protocol data...

vnc: vncviewer insufficient encoding value validation in CMsgReader::readRect

The CMsgReader::readRect function in the VNC Viewer component in RealVNC VNC Free Edition 4.0 through 4.1.2, Enterprise Edition E4.0 through E4.4.2, and Personal Edition P4.0 through P4.4.2 allows remote VNC servers to execute arbitrary code via crafted RFB protocol data, related to "encoding typ...

CVE-2008-4770

Removed by vendor...

RealVNC VNC Viewer Remote Code Execution Vulnerability (Windows)

This host has RealVNC VNC Viewer installed and is prone to security vulnerability. The flaw is due to error in 'CMsgReader::readRect' function in common/rfb/CMsgReader.cxx processing encoding types, and is exploited by sending specially crafted messages to the application. OpenVAS Vulnerability...

RealVNC CMsgReader::readRect()函数远程代码执行漏洞

BUGTRAQ ID: 31832 RealVNC是一款远程控制软件，允许跨网络与桌面应用交互。 RealVNC的common/rfb/CMsgReader.cxx文件中的CMsgReader::readRect函数没有正确地处理编码类型，如果用户受骗连接到了恶意的服务器的话，就可能导致在用户系统上执行任意代码。 RealVNC RealVNC Free Edition 4.1.2 RealVNC ------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://www.realvnc.com/...