- Home
- CVEs with nessus.description==The version of VNC server running on the remote host is affected by
the following vulnerabilities :
- A flaw exists in RealVNC due to an error when handling
password authentication. A remote attacker can exploit
this to bypass authentication by using a specially
crafted request in which the client specifies an
insecure security type (e.g., 'Type 1 - None'), which is
accepted even if not offered by the server.
(CVE-2006-2369)
- A flaw exists in LibVNCServer within file auth.c due to
an error when handling password authentication. A remote
attacker can exploit this to bypass authentication by
using a specially crafted request in which the client
specifies an insecure security type (e.g., 'Type 1 -
None'), which is accepted even if not offered by the
server. (CVE-2006-2450)
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top