This is due to incorrect use of the ClientConnection::Copybuffer function. An attacker controlling a device with the UltraVNC Server running can perform remote code execution on the client devices to cause a denial-of-service condition, modify system's data and/or obtain sensitive information.
Filter
Materials
Advisories RSS feedBack to top 