CVE-2014-7872
CVE-2014-7872 affects Comodo GeekBuddy prior to 4.18.121, where the VNC server runs with lax access controls, allowing local privilege escalation by connecting to the VNC server (passwordless, background service). Some sources note a potential remote vector via CSRF-like attacks with a web-based ...