Slashdot Mirror

← Back to Stories (view on slashdot.org)

Critical Flaw Found in VNC 4.1

Posted by ryuzaki0 on from the public-desktops dept.

jblobz writes "IntelliAdmin has discovered a critical flaw that allows an attacker to control any machine running VNC 4.1. The flaw grants access without the attacker obtaining a password. The details of the vulnerability have not been released, but their website has a proof of concept that allows you to test your own VNC installation for the vulnerability"

4 of 175 comments (clear)

  1. Re:tight vnc by mtmra70 · · Score: 0, Offtopic

    The tight holes seem to be the desirable ones now 'n days.....

  2. Re:The penultimate Slashdot troll post investigati by jihadi_diggrulz · · Score: 1, Offtopic

    Mod parent up +5 Insightful.

    Just my €0.01.

  3. While I hate to say it... by Khyber · · Score: 0, Offtopic

    Just releasing a stable patch for it and saying it's just a bad database overflow would probably be better than disclosing proof of concept, especially if it can be run on other machines, particularly DEFENSE NETWORKS THAT SHOULDN'T BE ON THE INTERNET ANY-FUCKING-WAY LIKE THEY ARE NOW. Excuse me? Our original DARPA-NET still connected to the rest of the world? What? Can you please explain this to me, even IF it is funded with taxpayer dollars, please? *SOME* info has to remain sensitive, and I'm a huge 4th amendment advocate. Besides the point, some of our own info *MUST* remain private if we, as a country, are to have/maintain our own self-independence. Let's just not make sure it comes to Bushism/Catholicism/Ninjitsu/WHATEVER RELIGION PERIOD.... ONLY rational and realistic thinkers are allowed, with SOME exception for those that *MAY* have half a clue, unlike everyone else, who seems uneducated. Think I'm talking about you? Check your current school discrict grades with other school districts. Do I hear an "I'm sorry?"

    Our schooling system, before anything else, needs a reform. If you ask me "How do you propose this, Sir?" I point you to my previous posts. Since my Firefox copy/paste function is inexplicably broken, I invite you to search through my most recent TEN slashdot posts I've made, and within those, you'll find the relevant answer that I believes answerss your question/s.

    --
    Still waiting on Serviscope_minor to wake up to fucking reality and realize that Jessica Price isn't going to fuck him.
  4. Re:tight vnc (NOTE TO MODERATORS) by julesh · · Score: 0, Offtopic

    Mods, the parent post is *not* offtopic. It's an important question, the answer to which is "no, it isn't.".