9 matches found
TightVNC 2.8.83 - Control Pipe Manipulation
Exploit Title: TightVNC 2.8.83 - Control Pipe Manipulation Date: 06/09/2025 Exploit Author: Ionut Zevedei [email protected] Exploit Repository: https://github.com/zeved/CVE-2024-42049-PoC Vendor Homepage: https://www.tightvnc.com/ Software Link: https://www.tightvnc.com/download.php Version: 2.8.83...
📄 TightVNC 2.8.83 Control Pipe Manipulation
TightVNC version 2.8.83 suffers from a control pipe manipulation vulnerability. Exploit Title: TightVNC 2.8.83 - Control Pipe Manipulation Date: 06/09/2025 Exploit Author: Ionut Zevedei [email protected] Exploit Repository: https://github.com/zeved/CVE-2024-42049-PoC Vendor Homepage:...
CVE-2024-42049
TightVNC Server for Windows before 2.8.84 allows attackers to connect to the control pipe via a network connection...
The vulnerability of the Control Pipe Handler component in the remote access system for the TightVNC computer desktop allows a intruder to unauthorizedly connect to the control channel.
The vulnerability of the Control Pipe Handler component in the remote access system for TightVNC involves bypassing the authentication process by using an alternative path or channel. Exploiting this vulnerability allows a malicious actor to unauthorizedly connect to the control channel through t...
CVE-2024-42049
TightVNC Server for Windows before 2.8.84 allows attackers to connect to the control pipe via a network connection...
CVE-2024-42049
TightVNC Server for Windows versions before 2.8.84 are affected by a vulnerability in the control pipe that allows a network-based connection to the control pipe. The issue has been demonstrated in PoCs and exploit code shows commands such as disconnecting clients, listing clients, shutdown, and ...
PT-2024-5229 · Tightvnc · Tightvnc
Name of the Vulnerable Software and Affected Versions: TightVNC Server for Windows versions prior to 2.8.84 Description: The issue is related to the Control Pipe Handler component of the TightVNC remote desktop access system, which allows attackers to bypass the authentication procedure by using ...
SUSE CVE-2022-48834
In the Linux kernel, the following vulnerability has been resolved: usb: usbtmc: Fix bug in pipe direction for control transfers The syzbot fuzzer reported a minor bug in the usbtmc driver: usb 5-1: BOGUS control dir, pipe 80001e80 doesn't match bRequestType 0 WARNING: CPU: 0 PID: 3813 at...
IPass Control Pipe Remote Command Execution
This module exploits a vulnerability in the IPass Client service. This service provides a named pipe which can be accessed by the user group BUILTIN\Users. This pipe can be abused to force the service to load a DLL from a SMB share. This module requires Metasploit: https://metasploit.com/download...