Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Ultra VNC-3DES-is it secure

from [Israel Ochoa] Network Security [Permanent Link]
Subject: RE: Ultra VNC-3DES-is it secure
Date: Tue, 22 Jan 2008 11:44:17 -0800 
Is it secure against Man in the middle attack?

No.

It's kind of insecure, that's because with a "man-in-the-middle" attack you can 
get the hash of the VNC password (i.e. using Cain) and then using a dictionary 
or brute force attack you can guess the password, that depends if it is complex 
or not, and take control of that computer.
Using a sniffer and the same attack you can view all data between VNC client 
and server. 


Do I need to report this as a CRITICAL/HIGH security issue..


IMHO Yes, you can consider this as a high issue.

If your client still want to use VNC as a remote connection solution, they can 
use the AES plugin for UltraVNC.

Israel Ochoa

-----Original Message-----
From: listbounce@securityfocus.com [mailto:listbounce@securityfocus.com] On 
Behalf Of pentestr
Sent: Viernes, 18 de Enero de 2008 12:46 p.m.
To: Pentest Mailinglist
Subject: Ultra VNC-3DES-is it secure

hi hackers,
I am doing a VA/PT for one our client and found one of the servers is 
using Ultra VNC. The ports (5800 & 5900) are open to Internet. Is it 
secure against Man in the middle attack?
Do I need to report this as a CRITICAL/HIGH security issue..

Thanks & Rgds.
P.T.


------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------


______________________________________________________________________
This e-mail has been scanned by MCI Managed Email Content Service, using 
Skeptic(tm) technology powered by MessageLabs. For more information on MCI's 
Managed Email Content Service, visit http://www.mci.com.
______________________________________________________________________ 
--------------------------------------------------------


          TELVISTA CERTIFIED

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Thoughts of the paranoid on the call centre security., Steev Klimaszewski
Next by Date:  Re: Question re: load balancers as a security device, Matthew Leeds
Previous by Thread:  RE: Ultra VNC-3DES-is it secure, Shenk, Jerry A
Next by Thread:  sqlninja 0.2.2 released, A. R.
Indexes:  [Date] [Thread] [Top] [All Lists]