PT-2002-2000 · Sun · Sunpci Ii Vnc

Published

2002-08-31

Updated

2008-09-05

CVE-2002-0994

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions: SunPCi II VNC (affected versions not specified)

Description: The issue concerns a weak authentication scheme used by SunPCi II VNC. This weakness allows remote attackers to obtain the VNC password by intercepting the random byte challenge, which serves as the key for encrypted communications.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2002-0994

Affected Products

Sunpci Ii Vnc

PT-2002-2000 · Sun · Sunpci Ii Vnc

CVE-2002-0994

Related Identifiers

Affected Products

References · 5