The Bozteck Blog » oveflow http://vncscan.com/blog VNCScan Enterprise Network Manager (VENM) Tue, 24 Aug 2010 01:23:41 +0000 http://wordpress.org/?v=2.9.2 en hourly 1 UltraVNC Viewer Vaulnerability http://vncscan.com/blog/2009/02/ultravnc-viewer-vaulnerability/ http://vncscan.com/blog/2009/02/ultravnc-viewer-vaulnerability/#comments Fri, 06 Feb 2009 03:06:00 +0000 Steve Bostedor http://vncscan.com/blog/?p=39 Important Information

There has been a serious integer overflow vulnerability found in the UltraVNC viewer with versions 1.0.5.3 and earlier. There is more information about this vulnerability at Core Security.

Notice that this is for the viewer only. The server is not affected by this bug.

Solution

The easiest way to upgrade the viewer is to upgrade to the latest release of VENM Console. This version uses the patched viewer and is safe.

Alternatively, you can manually update your vncviewer.exe by performing the following steps:

  1. Download the zipped viewer here
  2. Unzip the vncviewer.exe into the following places:
  • “C:\Program Files\Bozteck\VNCScan Console .Net”
  • “C:\fastpush\vnc7\ultra”

Thank You,

Steve Bostedor
Bozteck VENM Support

http://www.vncscan.com

]]> http://vncscan.com/blog/2009/02/ultravnc-viewer-vaulnerability/feed/ 0