CVE-2001-0168

EPSS 67.36% · P99 Updated Feb 27, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2001-0168

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Buffer overflow in AT&T WinVNC (Virtual Network Computing) server 3.3.3r7 and earlier allows remote attackers to execute arbitrary commands via a long HTTP GET request when the DebugLevel registry key is greater than 0.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

AT&T WinVNC 服务器程序缓冲区溢出漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

CVE(CAN) ID: CAN-2001-0168 WinVNC 是可免费获得的远程管理软件包，设计用来访问远程系统，它由 AT&T 发行和维护。该软件包的服务器部分存有问题，这使得远程用户可以执行任意代码。问题来源于设置非零调试级别时对 HTTP 请求的处理。HTTP 请求放在一个长 1024 字节的缓冲区中。当 Windows 注册钥调试级别的值被设置成大于零时，用 ReallyPrint() 函数把 HTTP 请求写入日志。ReallyPrint() 函数中有一个固定大小的长 1024

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Shenlong Deep Dive — AI Deep Analysis

10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.

Read summary Full analysis (login)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2001-0168

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2001-0168

请登录查看更多情报信息。

http://www.securityfocus.com/bid/2306vdb-entryx_refsource_BID
http://www.kb.cert.org/vuls/id/598581third-party-advisoryx_refsource_CERT-VN
https://exchange.xforce.ibmcloud.com/vulnerabilities/6026vdb-entryx_refsource_XF
http://marc.info/?l=vnc-list&m=98080763005455&w=2mailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2001-0168

Same Patch Batch · n/a · 2001-03-09 · 39 CVEs total

CVE-2001-0223		Wwwwais命令执行漏洞
CVE-2001-0209		Shoutcast Distributed Network Audio Server (DNAS)命令执行漏洞
CVE-2001-0210		Carey Internets Services Commerce.cgi远程目录遍历漏洞
CVE-2001-0211		SilverPlatter WebSPIRS远程目录遍历漏洞
CVE-2001-0212		HIS Auktion脚本泄漏文件和远程执行命令的漏洞
CVE-2001-0213		PlanetIntra缓冲区溢出漏洞
CVE-2001-0214		Way-Board远程文件泄露漏洞
CVE-2001-0216		MnSCU/PALS WebPALS远程命令执行漏洞
CVE-2001-0217		MnSCU/PALS WebPALS远程命令执行漏洞
CVE-2001-0220		elvis ja-elvis和ko-helvis端口缓冲区溢出漏洞
CVE-2001-0208		Micro Focus Cobol本地任意命令执行漏洞
CVE-2001-0224		Brightstation Muscat根路径泄露漏洞
CVE-2001-0225		Infobot fortran 数学函数执行任意命令漏洞
CVE-2001-0226		BiblioWeb web server目录遍历漏洞
CVE-2001-0227		BiblioWeb web server缓冲区溢出漏洞
CVE-2001-0228		GoAhead web server目录遍历漏洞
CVE-2001-0229		Linux Chili!Soft ASP提升权限漏洞
CVE-2001-0231		Ibrow newsdesk.cgi文件泄露漏洞
CVE-2001-0232		News Desk newsdesk.cgi文件泄露漏洞
CVE-2001-0188		GoodTech FTP Server拒绝服务漏洞

Showing top 20 of 39 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2001-0168

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2001-0168

I. Basic Information for CVE-2001-0168

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Shenlong Deep Dive — AI Deep Analysis

Affected Products

II. Public POCs for CVE-2001-0168

III. Intelligence Information for CVE-2001-0168

Same Patch Batch · n/a · 2001-03-09 · 39 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2001-0168

Leave a comment