Description
Stack-based buffer overflow in the CLogger::WriteFormated function in echoware/Logger.cpp in EchoVNC Linux before 1.1.2 allows remote echoServers to execute arbitrary code via a large (1) group or (2) user list, aka a "very crowded echoServer" attack. NOTE: some of these details are obtained from third party information.
References (4)
Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/30722
Product x_refsource_confirm
http://sourceforge.net/project/shownotes.php?release_id=620019&group_id=133100
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/44501
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/31526
Scores
EPSS
0.0274
EPSS Percentile
84.5%
Details
CWE
CWE-119
Status
published
Products (1)
echovnc/echovnc
< 1.1.1
Published
Aug 19, 2008
Tracked Since
Feb 18, 2026