<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Penetration Testing: Thoughts on VNC access?

Thoughts on VNC access?

From: Jeremy Junginger <jjunginger_at_interactcommerce.com>
Date: Tue, 9 Jul 2002 07:58:32 -0700

I just wanted to pose a question to get your collective opinions. Upon
enumerating VNC servers in a network, what is your preferred method of
gaining access? There is the obvious grabbing of the
HKLM\Software\ORL\WinVNC3 keys and using X4(VNCrack) to extract the
unencrypted password, or the raw brute force method of using a wordlist
with VNCrack. Are there any more elegant methods of gaining access out
there? I have heard rumor of a vncviewer client that functions
similarly to VNCrack, but have never seen it.

-Jeremy

application/x-pkcs7-signature attachment: smime_p7s

Received on Jul 11 2002

This message: [ Message body ]
Next message: ewvtwvi_at_hushmail.com: "escalating IUSR to admin rights via unicode and iis4"
Previous message: Wayne Maples: "RE: Default passwords for TSO and CICS ?"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]