VNC Server Weak Password Encryption Vulnerability

Bugtraq ID: 854
Class: Design Error
CVE:
Remote: Yes
Local: Yes
Published: Oct 01 1999 12:00AM
Updated: Oct 01 1999 12:00AM
Credit: Discovered by Conde Vampiro of Roses Labs. http://www.roses-labs.com/
Vulnerable: AT&T VNC 3.3 .x
- BSDI BSD/OS 3.0
- Digital UNIX 4.0
- FreeBSD FreeBSD 2.2.5
- HP HP-UX 10.20
- Linux kernel 2.3
- Linux kernel 2.2
- Linux kernel 2.1
- Linux kernel 2.0
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows NT 4.0
 - NetBSD NetBSD 1.4 x86
 - NetBSD NetBSD 1.3
- SCO Open Server 5.0
- SGI IRIX 6.2
- Sun SunOS 4.1.3
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus