|
Diploid
Cuban



Registered: 01/09/03
Posts: 19,274
Loc: Rabbit Hole
|
CRITICAL!!! Security Vulnerability in VNC - READ THIS NOW
#7971964 - 02/03/08 07:37 AM (15 years, 11 months ago) |
|
|
If you use VNC, read this now!
I freaked out today when I was working on something and suddenly my mouse went crazy. I'd move it and it would move somewhere else. I figured there was lint in the optical sensor or maybe the USB port it's plugged into was having trouble, then I noticed the VNC icon in the system tray had changed from white to black, meaning someone's logged in!
I practically flew across the room to shut off the router! Yikes!
After killing VNC, I looked around and found that there is a buffer overrun bug exploit found last October. I guess I was just lucky that I was here when someone found their way in.
Apparently this is fixed in the new version, but now I'm paranoid, which sucks because it's such a useful functionality.
Damned idiot programmers. Buffer overrun is the most sophomoric of all the stoopid errors a C programmer can make. WTF! Why did I paid for this piece of shit.
Maybe it's time to start using Microsoft's Remote Desktop thingie.
--
If you are running RealVNC on any of your hosts, and it is an older version than Free Edition 4.1.2, Personal Edition 4.2.3, or Enterprise Edition 4.2.3, then I urge you to stop whatever you are doing and upgrade immediately. If you put off upgrading, then it is likely that you will need to recover from a system compromise before doing so. There has been a sharp increase in hackers using RealVNC to compromise machines in the past few days.
The RealVNC vulnerability allows an attacker to bypass authentication by simply requesting 'Type 1 - None' as the authentication type even though it is not explicitly configured to support that. By exploiting this issue, an attacker gains access to the affected host at the privilege level under which RealVNC operates, typically as Administrator under Windows.
Here are links to more informational and RealVNC software.
http://www.intelliadmin.com/blog/2006/05/security-flaw-in- realvnc-411.html http://lists.grok.org.uk/pipermail/full-disclosure/2006-May/046039.html http://www.realvnc.com/products/free/4.1/release-notes.html http://www.realvnc.com/products/personal/4.2/release-notes.html http://www.realvnc.com/products/enterprise/4.2/release-notes.html http://isc.sans.org/diary.php?date=2006-05-12
Todd Atkins Network Security Coordinator University of California, Santa Barbara Voice: (805) 689-9300 Fax: (805) 893-5051 http://www.oit.ucsb.edu/security
-------------------- Republican Values: 1) You can't get married to your spouse who is the same sex as you. 2) You can't have an abortion no matter how much you don't want a child. 3) You can't have a certain plant in your possession or you'll get locked up with a rapist and a murderer. 4) We need a smaller, less-intrusive government.
|
poke smot!
floccinocci floofinator



Registered: 01/08/03
Posts: 5,248
|
Re: CRITICAL!!! Security Vulnerability in VNC - READ THIS NOW *DELETED* [Re: Diploid]
#7971980 - 02/03/08 07:48 AM (15 years, 11 months ago) |
|
|
Post deleted by poke smot!Reason for deletion: x
|
Diploid
Cuban



Registered: 01/09/03
Posts: 19,274
Loc: Rabbit Hole
|
Re: CRITICAL!!! Security Vulnerability in VNC - READ THIS NOW [Re: poke smot!]
#7972028 - 02/03/08 08:22 AM (15 years, 11 months ago) |
|
|
Yeah, I use non-standard ports, but that's not much of a defence against someone who knows what they're doing. And I always figured if I'm paying for a commercial product, there should be thorough code reviews done before anything goes into production, but apparently not.
I should have pirated it. At least I'd feel better now. 
TightVNC here I come.
-------------------- Republican Values: 1) You can't get married to your spouse who is the same sex as you. 2) You can't have an abortion no matter how much you don't want a child. 3) You can't have a certain plant in your possession or you'll get locked up with a rapist and a murderer. 4) We need a smaller, less-intrusive government.
|
milkman
DeliveringWorldWide



Registered: 07/04/07
Posts: 2,108
Loc: tha FLA
Last seen: 2 months, 29 days
|
Re: CRITICAL!!! Security Vulnerability in VNC - READ THIS NOW [Re: Diploid]
#7972654 - 02/03/08 12:03 PM (15 years, 11 months ago) |
|
|
i actually did that to a few people i used a thing that scans a range of ips/ports then you open the vnc thing input ip and bam your on a desktop miles away ha it was so fun
|
HELLA_TIGHT
Madge the Smoking Vag


Registered: 08/19/03
Posts: 84,387
Loc: Afghanistan
|
Re: CRITICAL!!! Security Vulnerability in VNC - READ THIS NOW [Re: Diploid]
#7974230 - 02/03/08 05:25 PM (15 years, 11 months ago) |
|
|
So you're running VNC on Windows?
I would suggest just sticking to RDP, unless you're on linux.
--------------------
|
Diploid
Cuban



Registered: 01/09/03
Posts: 19,274
Loc: Rabbit Hole
|
Re: CRITICAL!!! Security Vulnerability in VNC - READ THIS NOW [Re: HELLA_TIGHT]
#7974386 - 02/03/08 06:00 PM (15 years, 11 months ago) |
|
|
Not any more!
-------------------- Republican Values: 1) You can't get married to your spouse who is the same sex as you. 2) You can't have an abortion no matter how much you don't want a child. 3) You can't have a certain plant in your possession or you'll get locked up with a rapist and a murderer. 4) We need a smaller, less-intrusive government.
|
funnybunny
Saboten Bomber




Registered: 01/30/06
Posts: 602
Loc: Spain
Last seen: 1 year, 7 months
|
Re: CRITICAL!!! Security Vulnerability in VNC - READ THIS NOW [Re: Diploid]
#7976596 - 02/04/08 05:49 AM (15 years, 11 months ago) |
|
|
My VNC connections are only allowed through a SSH tunnel.
|
beatyou
one


Registered: 02/21/06
Posts: 618
Loc: austin, tx
Last seen: 2 years, 5 months
|
Re: CRITICAL!!! Security Vulnerability in VNC - READ THIS NOW [Re: funnybunny]
#7983158 - 02/05/08 03:54 PM (15 years, 11 months ago) |
|
|
First of all, you shouldn't have had VNC open to the outside world, that would have prevented your situation. The only port you should have open to the outside is a vpn/ssh tunnel of some sort.
So if you are at a remote location, the process is 1. connect to your VPN (OpenVPN ftw) -> 2. Open your VNC session
Having ANY other ports open besides a vpn of some sort is insecure.
btw, why did you pay for vnc? there are tons of free vnc flavors out there, all pretty much the same. Also, commercial software is traditionally less secure and more buggy than open source alternatives.
|
Diploid
Cuban



Registered: 01/09/03
Posts: 19,274
Loc: Rabbit Hole
|
Re: CRITICAL!!! Security Vulnerability in VNC - READ THIS NOW [Re: beatyou]
#7983627 - 02/05/08 05:49 PM (15 years, 11 months ago) |
|
|
The only port you should have open to the outside is a vpn/ssh tunnel of some sort.
Unfortunately, it's not always possible to use a VPN. That's the real world, like it or not.
why did you pay
To get a polished, professional product, which I obviously didn't get.
-------------------- Republican Values: 1) You can't get married to your spouse who is the same sex as you. 2) You can't have an abortion no matter how much you don't want a child. 3) You can't have a certain plant in your possession or you'll get locked up with a rapist and a murderer. 4) We need a smaller, less-intrusive government.
|
beatyou
one


Registered: 02/21/06
Posts: 618
Loc: austin, tx
Last seen: 2 years, 5 months
|
Re: CRITICAL!!! Security Vulnerability in VNC - READ THIS NOW [Re: Diploid]
#7983666 - 02/05/08 05:59 PM (15 years, 11 months ago) |
|
|
Quote:
Diploid said: why did you pay
To get a polished, professional product, which I obviously didn't get.
Paying for software doesn't guarantee you any of those things, in my experience paid software is a BITCH to get support for, or bugs fixed. Cause they already have your money, what else do they need?
Open source projects are often more polished, stable, well documented, and have an active community of developers and support. Some software is worth buying, but it's few and far in between.
|
Diploid
Cuban



Registered: 01/09/03
Posts: 19,274
Loc: Rabbit Hole
|
Re: CRITICAL!!! Security Vulnerability in VNC - READ THIS NOW [Re: beatyou]
#7983681 - 02/05/08 06:02 PM (15 years, 11 months ago) |
|
|
Yeah well, that's the last time I pay for software. It's all in a torrent somewhere, and I'm sick of shit developers who don't even know how to manage an array without introducing a buffer overflow bug.
-------------------- Republican Values: 1) You can't get married to your spouse who is the same sex as you. 2) You can't have an abortion no matter how much you don't want a child. 3) You can't have a certain plant in your possession or you'll get locked up with a rapist and a murderer. 4) We need a smaller, less-intrusive government.
|
|