VNC: TightVNC vncviewer InitialiseRFBConnection Heap Buffer Overflow
This signature detects attempts to exploit a known vulnerability against TightVNC vncviewer. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the user.
Extended Description
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2019-15679. Reason: This candidate is a duplicate of CVE-2019-15679. Notes: All CVE users should reference CVE-2019-15679 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.
References
CVE: CVE-2022-23967
Short Name
VNC:OVERFLOW:TIGHTVNC-INIT-RFB
Severity
Major
Recommended
False
Recommended Action
Drop
Category
VNC
Keywords
Buffer CVE-2022-23967 Heap InitialiseRFBConnection Overflow TightVNC vncviewer
Release Date
04/05/2022
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3650
False Positive
Unknown
CVSS Score
7.5