Null Pointer Dereference Vulnerability in TightVNC 1.3.10: Exploitable DoS via Network Connectivity

Null Pointer Dereference Vulnerability in TightVNC 1.3.10: Exploitable DoS via Network Connectivity

CVE-2019-15680 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

TightVNC code version 1.3.10 contains null pointer dereference in HandleZlibBPP function, which results Denial of System (DoS). This attack appear to be exploitable via network connectivity.

Learn more about our Network Penetration Testing.