Winvnc

winvnc

Vendor: Att • 4 CVEs

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2001-0168 1Att 1Winvnc Apr 16, 2026 May 3, 2001 N/A· v4 N/A· v3 10.0 HIGH· v2 Buffer overflow in AT&T WinVNC (Virtual Network Computing) server 3.3.3r7 and earlier allows remote attackers to execute arbitrary commands via a long HTTP GET request when the DebugLevel registry key is greater than 0.
CVE-2001-0167 1Att 1Winvnc Apr 16, 2026 May 3, 2001 N/A· v4 N/A· v3 7.6 HIGH· v2 Buffer overflow in AT&T WinVNC (Virtual Network Computing) client 3.3.3r7 and earlier allows remote attackers to execute arbitrary commands via a long rfbConnFailed packet with a long reason string.
CVE-2001-1422 1Att 1Winvnc Apr 16, 2026 Jan 23, 2001 N/A· v4 N/A· v3 7.5 HIGH· v2 WinVNC 3.3.3 and earlier generates the same challenge string for multiple connections, which allows remote attackers to bypass VNC authentication by sniffing the challenge and response of other users.
CVE-2000-1164 1Att 1Winvnc Apr 16, 2026 Jan 9, 2001 N/A· v4 N/A· v3 9.0 HIGH· v2 WinVNC installs the WinVNC3 registry key with permissions that give Special Access (read and modify) to the Everybody group, which allows users to read and modify sensitive information such as passwords and gain access t...Show more WinVNC installs the WinVNC3 registry key with permissions that give Special Access (read and modify) to the Everybody group, which allows users to read and modify sensitive information such as passwords and gain access to the system.Show less