Summary
This host is installed with RealVNC product, which is prone to denial of service vulnerability.
Impact
Remote attacker can cause application to crash,
denying the service, and also can execute arbitrary code.
Impact Level : Application.
Solution
Upgrade to RealVNC Version 4.5.3 or later
For updates refer to http://www.realvnc.com/
Insight
The flaw is due to lack of adequate boundary check while parsing user supplied data.
Affected
RealVNC 4.1.2 and prior on Windows (All).
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2008-3493 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities
- Dopewars Server 'REQUESTJET' Message Remote Denial of Service Vulnerability
- CUPS 'scheduler/select.c' Denial Of Service Vulnerability
- CUPS IPP Packets Processing Denial of Service Vulnerability
- ClamAV 'parseicon()' Denial Of Service Vulnerability
- Baidu Spark Browser Denial of Service Vulnerability -01 August14 (Windows)