Intrusion Prevention

TurboVNC.Fence.Message.Stack.Buffer.Overflow

Description

This indicates an attack attempt to exploit a Buffer Overflow Vulnerability in TurboVNC TurboVNC.
A remote attacker could exploit this vulnerability by sending malicious packets to the server. Successful exploitation could result in arbitrary code execution under the security context of the Xvnc service.

Affected Products

TurboVNC TurboVNC prior to 2.2.3

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
https://github.com/TurboVNC/turbovnc/commit/cea98166008301e614e0d36776bf9435a536136e

CVE References

CVE-2019-15683