SonicALERT
Search

Sonicwall Signatures

 

Go to All Categories list.


  RealVNC Authentication Bypass

Category: MISC      

RealVNC 4.1.1, and other products that use RealVNC such as AdderLink IP and Cisco CallManager, allows remote attackers to bypass authentication via a request in which the client specifies an insecure security type such as "Type 1 - None", which is accepted even if it is not offered by the server, as originally demonstrated using a long password.

References
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2369


Relevant Information