Heap Buffer Overflow Vulnerability in UltraVNC Revision 1198 Allows Remote Code Execution

Heap Buffer Overflow Vulnerability in UltraVNC Revision 1198 Allows Remote Code Execution

CVE-2019-8258 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

UltraVNC revision 1198 has a heap buffer overflow vulnerability in VNC client code which results code execution. This attack appears to be exploitable via network connectivity. This vulnerability has been fixed in revision 1199.

Learn more about our Network Penetration Testing.