First published: Fri May 05 2006(Updated: )
The MS-Logon authentication scheme in UltraVNC (aka Ultr@VNC) 1.0.1 uses weak encryption (XOR) for challenge/response, which allows remote attackers to gain privileges by sniffing and decrypting passwords.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Ultravnc Ultravnc | =1.0.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.