16 matches found
EUVD-2014-5940
Malware in sbrugna...
EUVD-2020-2664
Malware in sbrugna...
EUVD-2002-1494
Malware in sbrugna...
CVE-2020-10206
Use of a Hard-coded Password in VNCserver in Amino Communications AK45x series, AK5xx series, AK65x series, Aria6xx series, Aria7/AK7Xx series and Kami7B allows local attackers to view and interact with the video output of the device...
Hardcoded credentials
Use of a Hard-coded Password in VNCserver in Amino Communications AK45x series, AK5xx series, AK65x series, Aria6xx series, Aria7/AK7Xx series and Kami7B allows local attackers to view and interact with the video output of the device...
CVE-2020-10206
CVE-2020-10206 affects Amino Communications AK45x/AK5xx/AK65x/Aria6xx/Aria7/AK7Xx/Kami7B set-top devices where VNCserver uses a hard-coded password. The underlying issue is hard-coded credentials that allow a local attacker to view and interact with the device’s video output. Public documents con...
CVE-2020-10206
Use of a Hard-coded Password in VNCserver in Amino Communications AK45x series, AK5xx series, AK65x series, Aria6xx series, Aria7/AK7Xx series and Kami7B allows local attackers to view and interact with the video output of the device...
UltraVNC Viewer 1.2.4.0 - (VNCServer) Denial of Service Exploit
Exploit Title: UltraVNC Viewer 1.2.4.0 - 'VNCServer' Denial of Service PoC Discovery by: chuyreds Vendor Homepage: https://www.uvnc.com/ Software Link : https://www.uvnc.com/component/jdownloads/send/0-/394-ultravnc-1240-x86-setup.html?Itemid=0 Tested Version: 1.2.4.0 Vulnerability Type: Local...
libvncserver: HandleCursorShape() integer overflow resulting in heap-based buffer overflow
A flaw was found in libvncserver. An integer overflow within the HandleCursorShape function can be exploited to cause a heap-based buffer overflow by tricking a user or application using libvncserver to connect to an unstrusted server and subsequently send cursor shapes with specially crafted...
CVE-2014-6053
The rfbProcessClientNormalMessage function in libvncserver/rfbserver.c in LibVNCServer 0.9.9 and earlier does not properly handle attempts to send a large amount of ClientCutText data, which allows remote attackers to cause a denial of service memory consumption or daemon crash via a crafted...
CVE-2013-6886
RealVNC VNC 5.0.6 on Mac OS X, Linux, and UNIX allows local users to gain privileges via a crafted argument to the 1 vncserver, 2 vncserver-x11, or 3 Xvnc helper...
Design/Logic Flaw
RealVNC VNC 5.0.6 on Mac OS X, Linux, and UNIX allows local users to gain privileges via a crafted argument to the 1 vncserver, 2 vncserver-x11, or 3 Xvnc helper...
UltraVNC 1.0.2 Client (vncviewer.exe) Buffer Overflow
Exploit for php platform in category web applications $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ class Metasploit...
UltraVNC 1.0.1 Client Buffer Overflow
$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ class Metasploit3 'UltraVNC 1.0.1 Client Buffer...
CVE-2002-1511
The CVE-2002-1511 issue affects the vncserver wrapper for VNC prior to version 3.3.3r2-21, which uses rand() instead of srand() and thus generates weak cookies. Consequences are limited to authentication cookie guessing for VNC access. Publicly documented fixes are available: Red Hat RHSA-2003:06...
CVE-2002-1511
The vncserver wrapper for vnc before 3.3.3r2-21 uses the rand function instead of srand, which causes vncserver to generate weak cookies...