← CVECheck
HomeVulnerabilities

CVE-2001-0168 — HIGH severity vulnerability (Buffer overflow in AT&T WinVNC (Virtual Network Computing) s)

Buffer overflow in AT&T WinVNC (Virtual Network Computing) server 3.3.3r7 and earlier allows remote attackers to execute arbitrary commands via a long HTTP GET request when the DebugLevel registry key is greater than 0.

CVE IDCVE-2001-0168
SeverityHIGH
CVSS score10.0
CVSS vectorAV:N/AC:L/Au:N/C:C/I:C/A:C
CWENVD-CWE-Other
StatusModified
Published2001-05-03
Last modified2026-04-16
DescriptionBuffer overflow in AT&T WinVNC (Virtual Network Computing) server 3.3.3r7 and earlier allows remote attackers to execute arbitrary commands via a long HTTP GET request when the DebugLevel registry key is greater than 0.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →