47 matches found
VNC Authentication None Detection
Detect VNC servers that support the "None" authentication method. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'VNC Authentication None Detection', 'Description' = 'Detect VNC servers that...
UltraVNC w/ DSM Plugin Detection (2)
UltraVNC seems to be running on the remote port. Upon connection, the remote service on this port sends pseudo-random bytes. It is probably UltraVNC with the new DSM encryption plugin. This plugin tunnels the RFB protocol into a RC4 or AES encrypted stream. %NASLMINLEVEL 70300 C Tenable Network...
RealVNC远程终端控制软件存在远程认证绕过的漏洞
RealVNC VNC Server是一款远程终端控制软件。 RealVNC VNC Server采用的RFB(远程帧缓冲区)协议允许客户端与服务端协商合适的认证方法,协议的实现上存在设计错误,远程攻击者可以绕过认证无需口令实现对服务器的访问。 具体操作细节如下: 1 服务端发送其版本“RFB 003.008\n” 2 客户端回复其版本“RFB 003.008\n” 3 服务端发送1个字节,等于所提供安全类型的编号 3a 服务端发送字节数组说明所提供的安全类型 4 客户端回复1个字节,从3a的数组中选择安全类型 5 如果需要的话执行握手,然后是服务端的“0000” RealVNC...
[Full-disclosure] RealVNC 4.1.1 Remote Compromise
Rumors of this bug began spreading on Slashdot and other sites, thanks to Steve Wiseman of intelliadmin.com who serendipitously discovered it while writing a VNC client. At first it was only a rumor, as Steve's site gave scant details and he himself was surprised such a huge hole could possibly...
UltraVNC w/ DSM plugin detection
UltraVNC seems to be running on the remote port. Upon connection, the remote service on this port always sends the same 12 pseudo-random bytes. It is probably UltraVNC with the DSM encryption plugin. This plugin tunnels the RFB protocol into a RC4 encrypted stream. SPDX-FileCopyrightText: 2006...
UltraVNC w/ DSM Plugin Detection
UltraVNC seems to be running on the remote port. Upon connection, the remote service on this port always sends the same 12 pseudo-random bytes. It is probably UltraVNC with the old DSM encryption plugin. This plugin tunnels the RFB protocol into a RC4-encrypted stream. This old protocol does not...
VNC Server Security Type Detection
This script checks the remote VNC server protocol version and the available 'security types'. C Tenable Network Security, Inc. Some information: http://www.nessus.org/u?31a1871a http://www.nessus.org/u?6ad5fd00 http://www.nessus.org/u?99e99399 include"compat.inc"; if description scriptid19288;...