What the vulnerability does

01Description

TightVNC code version 1.3.10 contains null pointer dereference in HandleZlibBPP function, which results Denial of System (DoS). This attack appear to be exploitable via network connectivity.

Key dates

02Disclosure timeline

October 29, 2019 CVE published
August 5, 2024 Record updated