CVE-2008-4770

The CMsgReader::readRect function in the VNC Viewer component in RealVNC VNC Free Edition 4.0 through 4.1.2, Enterprise Edition E4.0 through E4.4.2, and Personal Edition P4.0 through P4.4.2 allows remote VNC servers to execute arbitrary code via crafted RFB protocol data, related to "encoding type."
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:realvnc:realvnc:4.0:*:free:*:*:*:*:*
cpe:2.3:a:realvnc:realvnc:4.1.2:*:free:*:*:*:*:*
cpe:2.3:a:realvnc:realvnc:4.4.2:*:enterprise:*:*:*:*:*
cpe:2.3:a:realvnc:realvnc:e4.0:*:enterprise:*:*:*:*:*
cpe:2.3:a:realvnc:realvnc:p4.0:*:personal:*:*:*:*:*
cpe:2.3:a:realvnc:realvnc:p4.4.2:*:personal:*:*:*:*:*

History

No history.

Information

Published : 2009-01-16 21:30

Updated : 2024-02-04 17:33


NVD link : CVE-2008-4770

Mitre link : CVE-2008-4770

CVE.ORG link : CVE-2008-4770


JSON object : View

Products Affected

realvnc

  • realvnc
CWE
CWE-20

Improper Input Validation