Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.106056
Category:Brute force attacks
Title:VNC Brute Force Login
Summary:Try to log in with given passwords via VNC protocol.
Description:Summary:
Try to log in with given passwords via VNC protocol.

Vulnerability Insight:
This script tries to authenticate to a VNC server with the
passwords set in the password preference. It will also test and report if no authentication /
password is required at all.

Note: Some VNC servers have a blacklisting scheme that blocks IP addresses after five unsuccessful
connection attempts for a period of time. The script will abort the brute force attack if it
encounters that it gets blocked.

Note as well that passwords can be max. 8 characters long.

Solution:
Change the password to something hard to guess or enable
password protection at all.

CVSS Score:
9.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:P/A:P

CopyrightCopyright (C) 2015 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.