Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2019-17662 PoC — ThinVNC 路径遍历漏洞

Source
https://github.com/kxisxr/Bash-Script-CVE-2019-17662
Associated Vulnerability
Title:ThinVNC 路径遍历漏洞 (CVE-2019-17662)
Description:ThinVNC是一款基于HTML5和AJAX的远程桌面实现。 ThinVNC 1.0b1版本中存在路径遍历漏洞。攻击者可利用该漏洞读取任意文件,进而入侵VNC服务器。
Description
ThinVNC 1.0b1 is vulnerable to arbitrary file read, which leads to a compromise of the VNC server. The vulnerability exists even when authentication is turned on during the deployment of the VNC server. The password for authentication is stored in cleartext in a file that can be read via a ../../ThinVnc.ini directory traversal attack vector.
File Snapshot

 [4.0K]  /data/pocs/97fea72909fb41323708c5e7a6b9286f389c2207
└── [1.2K]  exploitThinVnc.sh

0 directories, 1 file
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.