FS#4643 - VNC >= 4.1.1 Authentication Bypass - ALST

Attached to Project: Arch Linux
Opened by James Fryman (jfryman) - Tuesday, 16 May 2006, 12:17 GMT
Last edited by Damir Perisa (damir.perisa) - Friday, 19 May 2006, 18:26 GMT
Task Type Bug Report
Category Packages: Extra
Status Closed
Assigned To Damir Perisa (damir.perisa)
Architecture not specified
Severity High
Priority Normal
Reported Version 0.7.1 Noodle
Due in Version Undecided
Due Date Undecided
Percent Complete 100%
Votes 0
Private No

Details

A critical vulnerability has been discovered in RealVNC (Arch Package 'vnc') that allows an attacker to bypass the authentication method employed by sending a specially crafted packet to the attacker to take control of any desktop running VNC 4.0 - 4.1.1 (Utilizing RFB 003.008)

No official details have been released about this vuln, but has been discolsed on FullDisclosure May 15, 2006 by James Evans.

RealVNC has released an update to address this hole. The updated package can be found at: http://www.realvnc.com/cgi-bin/download.cgi
This task depends upon

Closed by  Damir Perisa (damir.perisa)
Friday, 19 May 2006, 18:38 GMT
Reason for closing:  Implemented
Comment by James Fryman (jfryman) - Tuesday, 16 May 2006, 12:18 GMT
Disclosure on FD:

http://seclists.org/lists/fulldisclosure/2006/May/0359.html
Comment by Damir Perisa (damir.perisa) - Friday, 19 May 2006, 18:26 GMT
4.2.5 is building atm
Comment by Damir Perisa (damir.perisa) - Friday, 19 May 2006, 18:29 GMT
this is not open ... i have to go back to 4.1.2, sorry

Loading...