CVE-2019-8263 : UltraVNC revision 1205 has stack-based buffer overflow vulnerability in VNC clie

UltraVNC revision 1205 has stack-based buffer overflow vulnerability in VNC client code inside ShowConnInfo routine, which leads to a denial of service (DoS) condition. This attack appear to be exploitable via network connectivity. User interaction is required to trigger this vulnerability. This vulnerability has been fixed in revision 1206.

Published 2019-03-05 15:29:01

Updated 2021-06-28 12:15:08

Source Kaspersky Labs

View at NVD, CVE.org

Vulnerability category: OverflowMemory CorruptionDenial of service

Products affected by CVE-2019-8263

Siemens » Sinumerik Access Mymachine/p2p
Versions before (<) 4.8
cpe:2.3:a:siemens:sinumerik_access_mymachine\/p2p:*:*:*:*:*:*:*:*
Matching versions
Siemens » Sinumerik Pcu Base Win10 Software/ipc
Versions before (<) 14.00
cpe:2.3:a:siemens:sinumerik_pcu_base_win10_software\/ipc:*:*:*:*:*:*:*:*
Matching versions
Siemens » Sinumerik Pcu Base Win7 Software/ipc
Versions up to, including, (<=) 12.01
cpe:2.3:a:siemens:sinumerik_pcu_base_win7_software\/ipc:*:*:*:*:*:*:*:*
Matching versions
Uvnc » Ultravnc
Versions before (<) 1.2.2.3
cpe:2.3:a:uvnc:ultravnc:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2019-8263

EPSS FAQ

1.14%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 77 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2019-8263

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.3	MEDIUM	AV:N/AC:M/Au:N/C:N/I:N/A:P	8.6	2.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial
6.5	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H	2.8	3.6	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: Required Scope: Unchanged Confidentiality: None Integrity: None Availability: High

CWE ids for CVE-2019-8263

CWE-121 Stack-based Buffer Overflow

A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).

Assigned by: vulnerability@kaspersky.com (Secondary)
CWE-787 Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2019-8263

https://us-cert.cisa.gov/ics/advisories/icsa-21-131-11

Siemens SIMATIC UltraVNC HMI WinCC Products | CISA

CVEs referencing this url
https://cert-portal.siemens.com/productcert/pdf/ssa-286838.pdf

CVEs referencing this url
https://cert-portal.siemens.com/productcert/pdf/ssa-940818.pdf

CVEs referencing this url
https://cert-portal.siemens.com/productcert/pdf/ssa-927095.pdf

Third Party Advisory

CVEs referencing this url
https://ics-cert.kaspersky.com/advisories/klcert-advisories/2019/03/01/klcert-19-010-ultravnc-stack-based-buffer-overflow/

KLCERT-19-010: UltraVNC Stack-based Buffer Overflow | Kaspersky Lab ICS CERT
Third Party Advisory
https://www.us-cert.gov/ics/advisories/icsa-20-161-06

Siemens SINUMERIK | CISA
Third Party Advisory;US Government Resource

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2019-8263

Products affected by CVE-2019-8263

Exploit prediction scoring system (EPSS) score for CVE-2019-8263

CVSS scores for CVE-2019-8263

CWE ids for CVE-2019-8263

References for CVE-2019-8263