1 results (0.006 seconds)

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

UltraVNC Repeater before 1300 does not restrict destination IP addresses or TCP ports, which allows remote attackers to obtain open-proxy functionality by using a :: substring in between the IP address and port number. UltraVNC Repeater en versiones anteriores a 1300 no restringe direcciones IP de destino o puertos TCP, lo que permite a atacantes remotos obtener la funcionalidad open-proxy usando una subcadena :: entre la dirección IP y el número de puerto. • http://www.kb.cert.org/vuls/id/735416 http://www.kb.cert.org/vuls/id/BLUU-A9WQVP http://www.securityfocus.com/bid/92348 • CWE-284: Improper Access Control •