diff options
| author | pav <pav@FreeBSD.org> | 2006-05-19 00:12:17 +0800 |
|---|---|---|
| committer | pav <pav@FreeBSD.org> | 2006-05-19 00:12:17 +0800 |
| commit | 295d28df55fc21d1e76d9aaae4fa75c692b74f3e (patch) | |
| tree | d916dcb74c01e621691e8e69a88646e39678cc78 | |
| parent | 7809fed868617999d344bc67484f59597dfe2956 (diff) | |
| download | freebsd-ports-gnome-295d28df55fc21d1e76d9aaae4fa75c692b74f3e.tar.gz freebsd-ports-gnome-295d28df55fc21d1e76d9aaae4fa75c692b74f3e.tar.zst freebsd-ports-gnome-295d28df55fc21d1e76d9aaae4fa75c692b74f3e.zip | |
- Add VuXML entry for vnc 4.1.1
| -rw-r--r-- | security/vuxml/vuln.xml | 28 |
1 files changed, 28 insertions, 0 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml index d62e2f9dad08..afe8d4c038d2 100644 --- a/security/vuxml/vuln.xml +++ b/security/vuxml/vuln.xml @@ -34,6 +34,34 @@ Note: Please add new entries to the beginning of this file. --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1"> + + <vuln vid="4645b98c-e46e-11da-9ae7-00123fcc6e5c"> + <topic>Authentication bypass vulnerability found in RealVNC</topic> + <affects> + <package> + <name>vnc</name> + <range><eq>4.1.1</eq></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>RealVNC is susceptible to an authentication-bypass vulnerability. + A malicious VNC client can cause a VNC server to allow it to connect + without any authentication regardless of the authentication settings + configured in the server. Exploiting this issue allows attackers to + gain unauthenticated, remote access to the VNC servers.</p> + </body> + </description> + <references> + <bid>17978</bid> + <mlist>http://www.securityfocus.com/archive/1/433994/30/0/threaded</mlist> + </references> + <dates> + <discovery>2006-05-15</discovery> + <entry>2006-05-18</entry> + </dates> + </vuln> + <vuln vid="6d78202e-e2f9-11da-8674-00123ffe8333"> <topic>phpldapadmin -- Cross-Site Scripting and Script Insertion vulnerabilities</topic> <affects> |