Winvnc Security Vulnerabilities and Issues — Winvnc CVE List

Lucene search

AttWinvnc

4 matches found

CVE•added 2001/05/07 4:0 a.m.•53 views

CVE-2000-1164

WinVNC installs the WinVNC3 registry key with permissions that give Special Access (read and modify) to the Everybody group, which allows users to read and modify sensitive information such as passwords and gain access to the system.

9CVSS6.2AI score0.00307EPSS

CVE•added 2001/05/03 4:0 a.m.•48 views

CVE-2001-0167

Buffer overflow in AT&T WinVNC (Virtual Network Computing) client 3.3.3r7 and earlier allows remote attackers to execute arbitrary commands via a long rfbConnFailed packet with a long reason string.

7.6CVSS7.8AI score0.65403EPSS

CVE•added 2001/05/03 4:0 a.m.•44 views

CVE-2001-0168

Buffer overflow in AT&T WinVNC (Virtual Network Computing) server 3.3.3r7 and earlier allows remote attackers to execute arbitrary commands via a long HTTP GET request when the DebugLevel registry key is greater than 0.

10CVSS7.8AI score0.67361EPSS

CVE•added 2005/03/20 5:0 a.m.•33 views

CVE-2001-1422

WinVNC 3.3.3 and earlier generates the same challenge string for multiple connections, which allows remote attackers to bypass VNC authentication by sniffing the challenge and response of other users.

7.5CVSS7.5AI score0.0139EPSS