CyberSec.Space Logo
CVEブラウザに戻る

CVE-2001-0167

HIGH
7.6
CVSS Severity Score
EPSS Score0.0420%
EPSS Percentile44.60th
Published2001年5月3日
Last Modified2026年4月16日

Vulnerability Description

Buffer overflow in AT&T WinVNC (Virtual Network Computing) client 3.3.3r7 and earlier allows remote attackers to execute arbitrary commands via a long rfbConnFailed packet with a long reason string.

Affected Platforms (CPE)

📦
Att

Winvnc

<= 3.3.3r7

References & Advisories

🔗 http://marc.info/?l=bugtraq&m=98088315825366&w=2
🔗 http://www.securityfocus.com/bid/2305
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/6025
🔗 http://marc.info/?l=bugtraq&m=98088315825366&w=2
🔗 http://www.securityfocus.com/bid/2305
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/6025

関連する脆弱性情報

CVE-2001-016810.0

Buffer overflow in AT&T WinVNC (Virtual Network Computing) server 3.3.3r7 and earlier allows remote attackers to execute arbitrary...

CVE-2001-159410.0

GE Healthcare eNTEGRA P&R has a password of (1) entegra for the entegra user, (2) passme for the super user of the Polestar/Polest...

CVE-2000-11649.0

WinVNC installs the WinVNC3 registry key with permissions that give Special Access (read and modify) to the Everybody group, which...

CVE-2001-14227.5

WinVNC 3.3.3 and earlier generates the same challenge string for multiple connections, which allows remote attackers to bypass VNC...

CVE-2001-0167 Detail & Impact Analysis | CVSS 7.6 (HIGH) | Cyber-Sec.Space | Cyber-Sec.Space