vnc software vulnerabilities
vulnerabilities.aspcode.net
Searching vnc software vulnerabilities
WinVNC 3.3.3 and earlier generates the same cha
WinVNC
|
WinVNC 3.3.3 and earlier generates the same challenge string for multiple connections, which allows remote attackers to bypass VNC authentication by sniffing the challenge and response of other users.
SunPCi II VNC uses a weak authentication scheme
authentication
|
communications
|
attackers
|
encrypted
|
challenge
|
password
|
sniffing
|
scheme
|
random
|
SunPCi
|
obtain
|
remote
|
allows
|
which
|
used
|
uses
|
weak
|
byte
|
VNC
|
key
|
SunPCi II VNC uses a weak authentication scheme, which allows remote attackers to obtain the VNC password by sniffing the random byte challenge, which is used as the key for encrypted communications.
The MOSIX Project clump/os 5.4 creates a defaul
attackers
|
clump/os
|
password
|
account
|
without
|
creates
|
Project
|
default
|
remote
|
access
|
allows
|
MOSIX
|
which
|
root
|
gain
|
VNC
|
The MOSIX Project clump/os 5.4 creates a default VNC account without a password, which allows remote attackers to gain root access.
VNC server on the AK-Systems Windows Terminal 1
AK-Systems
|
Terminal
|
Windows
|
server
|
VNC
|
VNC server on the AK-Systems Windows Terminal 1.2.5 ExVLP is not password protected, which allows remote attackers to login and view RDP or Citrix sessions.
Chicken of the VNC (cotv) 2.0 allows remote att
Chicken
|
VNC
|
Chicken of the VNC (cotv) 2.0 allows remote attackers to cause a denial of service (application crash) via a large computer-name size value in a ServerInit packet, which triggers a failed malloc and a resulting NULL dereference.
The VNC server implementation in QEMU, as used
implementation
|
demonstrated
|
environments
|
unspecified
|
arbitrary
|
operating
|
possibly
|
monitor
|
mapping
|
vectors
|
related
|
device
|
system
|
allows
|
server
|
other
|
users
|
CDROM
|
guest
|
files
|
local
|
mode
|
QEMU
|
read
|
host
|
used
|
VNC
|
via
|
Xen
|
The VNC server implementation in QEMU, as used by Xen and possibly other environments, allows local users of a guest operating system to read arbitrary files on the host operating system via unspecified vectors related to QEMU monitor mode, as demonstrated by mapping files to a CDROM device. NOTE: some of these details are obtained from third party information.
Heap-based buffer overflow in the ConnectAsyncE
ConnectAsyncEx
|
Heap-based
|
function
|
overflow
|
ActiveX
|
control
|
buffer
|
Viewer
|
VNC
|
Heap-based buffer overflow in the ConnectAsyncEx function in VNC Viewer ActiveX control (scvncctrl.dll) in the SmartCode VNC Manager 3.6 allows remote attackers to execute arbitrary code via a long argument.
Multiple buffer overflows in the AMX NetLinx VN
overflows
|
Multiple
|
NetLinx
|
buffer
|
VNC
|
AMX
|
Multiple buffer overflows in the AMX NetLinx VNC (AmxVnc) ActiveX control in AmxVnc.dll 1.0.13.0 allow remote attackers to execute arbitrary code via long (1) Host, (2) Password, or (3) LogFile property values.
Software vulnerabilities results 1 to 9 of 9
Page:
1