Realvnc bypass auth connection failure

[barcajax at gmail.com (Mervyn Heng)]

I'm running Win XP Pro SP1 with vulnerable RealVNC Server v4.1.1 as a
virtual machine. I can connect to this VNC server running on my virtual
machine from my host OS (XP Pro SP2) using the VNC Viewer software after
entering the correct password. I also successfully accessed the server via
my Host OS using the modified VNC viewer software from
www.blacksecurity.orgwithout entering a password.
Tried doing the same using the exploit provided by Metasploit but with no
luck. Metasploit states that it is listening for VNC connections on
0.0.0.0:5900 but when I used the VNC viewer by specifying localhost,
127.0.0.1, 0.0.0.0 or the host OS IP, I keep getting a connection error
message. Already turned off the firewall on the virtual machine and host
OS... any ideas why I can't connect to the VNC server through Metasploit as
a proxy?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.metasploit.com/pipermail/framework/attachments/20060731/a0bd7d0d/attachment.htm>