VNC Viewer Vulnerability CVE-2008-4770

jnw@realvnc.com jnw "at" realvnc.com
Wed Nov 26 13:26:02 2008


A vulnerability has been reported in a core VNC Viewer component's 
validation of server-supplied RFB protocol data. This issue only affects the 
VNC Viewer component, VNC Servers are not affected.

VNC Free Edition Viewer users should upgrade to version 4.1.3, and providers 
of software based on the VNC Free Edition open-source codebase should patch 
it to version 4.1.3.

For more information please visit 
http://www.realvnc.com/products/upgrade.html

Regards,

The RealVNC Team