本ページは att winvnc に影響する公開済み CVE(NVD の CPE 経由で関連付け)を列挙します。各行に深刻度指標・概要・公開日が含まれます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2001-0168 | Buffer overflow in AT&T WinVNC (Virtual Network Computing) server 3.3.3r7 and earlier allows remote attackers to execute arbitrary commands via a long HTTP GET request when the DebugLevel registry key is greater than 0. | [email protected] | 10.0 | 70.73% | 2001-05-03 | 2026-06-16 |
| CVE-2001-0167 | Buffer overflow in AT&T WinVNC (Virtual Network Computing) client 3.3.3r7 and earlier allows remote attackers to execute arbitrary commands via a long rfbConnFailed packet with a long reason string. | [email protected] | 7.6 | 50.81% | 2001-05-03 | 2026-06-16 |
| CVE-2001-1422 | WinVNC 3.3.3 and earlier generates the same challenge string for multiple connections, which allows remote attackers to bypass VNC authentication by sniffing the challenge and response of other users. | [email protected] | 7.5 | 2.06% | 2001-01-23 | 2026-06-16 |
| CVE-2000-1164 | WinVNC installs the WinVNC3 registry key with permissions that give Special Access (read and modify) to the Everybody group, which allows users to read and modify sensitive information such as passwords and gain access to the system. | [email protected] | 9.0 | 1.50% | 2001-01-09 | 2026-06-16 |