First published: Mon Mar 03 2003(Updated: )
The vncserver wrapper for vnc before 3.3.3r2-21 uses the rand() function instead of srand(), which causes vncserver to generate weak cookies.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Att Vnc | =3.3.5 | |
Tightvnc Tightvnc | =1.2.4 | |
Tightvnc Tightvnc | =1.2.0 | |
Att Vnc | =3.3.4 | |
Tightvnc Tightvnc | =1.2.1 | |
Att Vnc | =3.3.3r2 | |
Tightvnc Tightvnc | =1.2.3 | |
Att Vnc | =3.3.3 | |
Tightvnc Tightvnc | =1.2.2 | |
Tightvnc Tightvnc | =1.2.5 | |
Att Vnc | =3.3.6 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.