UltraVNC Viewer Vaulnerability
By Bozteck
Important Information
There has been a serious integer overflow vulnerability found in the UltraVNC viewer with versions 1.0.5.3 and earlier. There is more information about this vulnerability at Core Security.
Notice that this is for the viewer only. The server is not affected by this bug.
Solution
The easiest way to upgrade the viewer is to upgrade to the latest release of VENM Console. This version uses the patched viewer and is safe.
Alternatively, you can manually update your vncviewer.exe by performing the following steps:
- Download the zipped viewer here
- Unzip the vncviewer.exe into the following places:
- “C:\Program Files\Bozteck\VNCScan Console .Net”
- “C:\fastpush\vnc7\ultra”
Thank You,
Steve Bostedor
Bozteck VENM Support
http://www.vncscan.com
February 5th, 2009
Current Stable Release:
Categories
- Announcements (8)
- Backup (1)
- Blog (2)
- General (9)
- how-to (19)
- howto (3)
- podcast (1)
- Polls and Opinions (3)
- Releases (14)
- security (1)
- Support (1)
- Troubleshooting (8)
- Uncategorized (13)
- Updates (2)
- Videos (3)
- VNC Deployment (1)
- White Papers (1)