← back
CVE-2001-0168

CVE-2001-0168

EPSS 70.7%
Buffer overflow in AT&T WinVNC (Virtual Network Computing) server 3.3.3r7 and earlier allows remote attackers to execute arbitrary commands via a long HTTP GET request when the DebugLevel registry key is greater than 0.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/16491unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://marc.info/?l=vnc-list&m=98080763005455&w=2https://exchange.xforce.ibmcloud.com/vulnerabilities/6026http://www.kb.cert.org/vuls/id/598581http://www.securityfocus.com/bid/2306