Wednesday, February 04, 2009

VNC Viewer Security Vulnerabilities

UltraVNC and TightVNC (both derived from the original VNC code) have recently had vulnerabilities discovered in their client (viewer) software. UltraVNC Viewer has been updated to 1.0.5.4 to address this vulnerability, however as the last TightVNC release was waaaaaaaayyy back in May 2007, (they *are* promising 1.3.10 will be released on Feb 10, addressing this vulnerability - a little slack if you ask me) I'd recommend replacing any TightVNC installs you have with the latest updated UltraVNC product.

For more information on this vulnerability, have a read of this link.

Regards,

The Outspoken Wookie

No comments: