ID CVE-2006-4309
Summary VNC server on the AK-Systems Windows Terminal 1.2.5 ExVLP is not password protected, which allows remote attackers to login and view RDP or Citrix sessions.
References
Vulnerable Configurations
  • cpe:2.3:a:ak-systems:windows_terminal:1.2.5_exvlp:*:*:*:*:*:*:*
    cpe:2.3:a:ak-systems:windows_terminal:1.2.5_exvlp:*:*:*:*:*:*:*
CVSS
Base: 10.0 (as of 17-10-2018 - 21:34)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:L/Au:N/C:C/I:C/A:C
refmap via4
bid 19659
bugtraq 20060822 unauthorized VNC access in AK-Systems Windows Terminals
sreason 1438
xf windows-terminal-vnc-unauth-access(28532)
Last major update 17-10-2018 - 21:34
Published 23-08-2006 - 19:04
Back to Top