Category: Advisories

UltraVNC Viewer VNC client RFB SolidColor Arbitrary Write Vulnerability

December 16, 2021

EIP-0e1ca3ec A vulnerability exists within UltraVNC’s “vncviewer.exe” client. A malicious server can trigger an arbitrary memory write condition through a flaw in the function ClientConnection::SolidColor

UltraVNC Viewer VNC client RFB rfbServerInitMsg Heap Overflow Vulnerability

December 16, 2021

EIP-0e1ca3ec A vulnerability exists within UltraVNC’s “vncviewer.exe” client. Specifically a malicious server may write arbitrary data to arbitrary memory locations through the in the “rfbServerInitMsg”

UltraVNC Viewer VNC client RFB ReadUltraRect Heap Overflow Vulnerability

December 16, 2021

EIP-930b0ea5 A vulnerability exists within UltraVNC’s “vncviewer.exe” client. Specifically a heap overflow can be triggered in the “ClientConnection::ReadUltraRect” function upon decompression of malicious formatted data

UltraVNC Viewer VNC client Remote Memory Leak Vulnerability

December 2, 2021

EIP-5182fb5b A vulnerability exists within UltraVNC view due to a lack of proper stack memory buffer cleanup before constructing the ‘rfbTextChat’ message, which results in

Category: Advisories

UltraVNC Viewer VNC client RFB SolidColor Arbitrary Write Vulnerability

UltraVNC Viewer VNC client RFB rfbServerInitMsg Heap Overflow Vulnerability

UltraVNC Viewer VNC client RFB ReadUltraRect Heap Overflow Vulnerability

UltraVNC Viewer VNC client Remote Memory Leak Vulnerability

Intelligence

Support

Company