auth.c in LibVNCServer 0.7.1 allows remote attackers to bypass authentication via a request in which the client specifies an insecure security type such as "Type 1 - None", which is accepted even if it is not offered by the server, a different issue than CVE-2006-2369.
References
Configurations
History
13 May 2022, 18:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
Information
Published : 2006-07-18 15:40
Updated : 2024-02-04 16:52
NVD link : CVE-2006-2450
Mitre link : CVE-2006-2450
CVE.ORG link : CVE-2006-2450
JSON object : View
Products Affected
libvncserver
- libvncserver
CWE