Remote Code Execution Vulnerability in AT&T WinVNC Server 3.3.3r7 and Earlier

Remote Code Execution Vulnerability in AT&T WinVNC Server 3.3.3r7 and Earlier

CVE-2001-0168 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Buffer overflow in AT&T WinVNC (Virtual Network Computing) server 3.3.3r7 and earlier allows remote attackers to execute arbitrary commands via a long HTTP GET request when the DebugLevel registry key is greater than 0.

Learn more about our Cis Benchmark Audit For Server Software.