Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In mprivacy-tools before 2.0.406g in m-privacy TightGate-Pro Server, a Directory Traversal in the print function of the VNC service allows authenticated attackers (with access to a VNC session) to automatically transfer malicious PDF documents by moving them into the .spool directory, and then sending a signal to the VNC service, which automatically transfers them to the connected VNC client's filesystem.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
m-privacy TightGate-Pro Server 安全漏洞
Vulnerability Description
m-privacy TightGate-Pro Server是德国m-privacy公司的一个远程控制浏览器系统。 m-privacy TightGate-Pro Server 2.0.406g之前版本存在安全漏洞,该漏洞源于允许经过身份验证的攻击者通过将恶意 PDF 文档移动到 .spool 目录,然后向 VNC 服务发送信号,该服务会自动将它们传输到连接的 VNC 客户端的文件系统。
CVSS Information
N/A
Vulnerability Type
N/A