CVE-2002-1336

Опубликовано: 11 дек. 2002

Источник: debian

EPSS Низкий

Описание

TightVNC before 1.2.6 generates the same challenge string for multiple connections, which allows remote attackers to bypass VNC authentication by sniffing the challenge and response of other users.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
tightvnc	fixed	1.2.6-1		package

EPSS

Процентиль: 79%

0.01298

Низкий

Связанные уязвимости

CVE-2002-1336

redhat

почти 23 года назад

TightVNC before 1.2.6 generates the same challenge string for multiple connections, which allows remote attackers to bypass VNC authentication by sniffing the challenge and response of other users.

CVE-2002-1336

nvd

больше 22 лет назад

TightVNC before 1.2.6 generates the same challenge string for multiple connections, which allows remote attackers to bypass VNC authentication by sniffing the challenge and response of other users.

GHSA-fcjm-23wr-m9g6

github

около 3 лет назад

TightVNC before 1.2.6 generates the same challenge string for multiple connections, which allows remote attackers to bypass VNC authentication by sniffing the challenge and response of other users.

EPSS

Процентиль: 79%

0.01298

Низкий