Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
OSU Open Source Lab VNCAuthProxy through 1.1.1 is affected by an vncap/vnc/protocol.py VNCServerAuthenticator authentication-bypass vulnerability that could allow a malicious actor to gain unauthorized access to a VNC session or to disconnect a legitimate user from a VNC session. A remote attacker with network access to the proxy server could leverage this vulnerability to connect to VNC servers protected by the proxy server without providing any authentication credentials. Exploitation of this issue requires that the proxy server is currently accepting connections for the target VNC server.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
VNCAuthProxy 安全漏洞
Vulnerability Description
VNCAuthProxy是OSU Open Source Lab开源的一个具有中间人身份验证的 VNC 代理服务器。用作受保护网络后面的 VNC 服务器的网关。 OSU Open Source Lab VNCAuthProxy 1.1.1之前版本存在安全漏洞,该漏洞源于允许恶意行为者未经授权访问 VNC 会话或断开合法用户与 VNC 会话的连接,攻击者利用该漏洞可以连接到受代理服务器保护的 VNC 服务器,而无需提供任何身份验证凭据。
CVSS Information
N/A
Vulnerability Type
N/A