Stack-Based Buffer Overflow in UltraVNC from Ultracool Software
CVE-2019-8263
6.5MEDIUM
What is CVE-2019-8263?
UltraVNC revision 1205 is susceptible to a stack-based buffer overflow vulnerability within its VNC client code, specifically in the ShowConnInfo routine. This flaw can potentially lead to a denial of service (DoS), and while user interaction is necessary to initiate the exploitation, the attack is reachable over network connections. The issue has been addressed and resolved in revision 1206.
Affected Version(s)
UltraVNC 1.2.2.3