What is CVE-2019-17662?

CVE-2019-17662 is a vulnerability in N/a. Published 2019-10-16.

Is CVE-2019-17662 known to be exploited?

38 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2019-17662

ThinVNC 1.0b1 is vulnerable to arbitrary file read, which leads to a compromise of the VNC server. The vulnerability exists even when authentication is turned on during the deployment of the VNC server. The password for authentication is s…

EPSS: 0.941 (99.9th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

MuirlandOracle/CVE-2019-17662
bl4ck574r/CVE-2019-17662
whokilleddb/CVE-2019-17662
thomas-osgood/CVE-2019-17662
kxisxr/Bash-Script-CVE-2019-17662
rajendrakumaryadav/CVE-2019-17662-Exploit
Tamagaft/CVE-2019-17662
rapid7/metasploit-framework
Tyro-Shan/gongkaishouji
YIXINSHUWU/Penetration_

References

redteamzone.com/ThinVNC/ (x_refsource_MISC)
github.com/shashankmangal2/Exploits/blob/master/ThinVNC-RemoteAccess/POC.py (x_refsource_MISC)
github.com/bewest/thinvnc/issues/5 (x_refsource_MISC)
packetstormsecurity.com/files/154896/ThinVNC-1.0b1-Authentication-Bypass.html (x_refsource_MISC)

Frequently asked questions

What is CVE-2019-17662?: CVE-2019-17662 is a vulnerability in N/a. Published 2019-10-16.
Is CVE-2019-17662 known to be exploited?: 38 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.