CyberSec.Space Logo
Back to CVE Browser

CVE-2009-0388

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0160%
EPSS Percentile17.38th
PublishedFeb 4, 2009
Last ModifiedApr 23, 2026

Vulnerability Description

Multiple integer signedness errors in (1) UltraVNC 1.0.2 and 1.0.5 and (2) TightVnc 1.3.9 allow remote VNC servers to cause a denial of service (heap corruption and application crash) or possibly execute arbitrary code via a large length value in a message, related to the (a) ClientConnection::CheckBufferSize and (b) ClientConnection::CheckFileZipBufferSize functions in ClientConnection.cpp.

Affected Platforms (CPE)

πŸ“¦
Tightvnc

Tightvnc

= 1.3.9
πŸ“¦
Ultravnc

Ultravnc

= 1.0.2
πŸ“¦
Ultravnc

Ultravnc

= 1.0.5

References & Advisories

πŸ”— http://forum.ultravnc.info/viewtopic.php?t=14654
πŸ”— http://secunia.com/advisories/33807
πŸ”— http://vnc-tight.svn.sourceforge.net/viewvc/vnc-tight?view=rev&revision=3564
πŸ”— http://www.coresecurity.com/content/vnc-integer-overflows
πŸ”— http://www.securityfocus.com/archive/1/500632/100/0/threaded
πŸ”— http://www.securityfocus.com/bid/33568
πŸ”— http://www.vupen.com/english/advisories/2009/0321
πŸ”— http://www.vupen.com/english/advisories/2009/0322

Related Vulnerabilities

CVE-2019-156789.8

TightVNC code version 1.3.10 contains heap buffer overflow in rfbServerCutText handler, which can potentially result code executio...

CVE-2019-156799.8

TightVNC code version 1.3.10 contains heap buffer overflow in InitialiseRFBConnection function, which can potentially result code ...

CVE-2019-82879.8

TightVNC code version 1.3.10 contains global buffer overflow in HandleCoRREBBP macro function, which can potentially result code e...

CVE-2021-427859.8

Buffer Overflow vulnerability in tvnviewer.exe of TightVNC Viewer allows a remote attacker to execute arbitrary instructions via a...