[Lula] Warning - vnc vulnerability being actively exploited!
charles at thewybles.com
charles at thewybles.com
Tue Aug 1 00:36:41 EDT 2006
Dan Kegel wrote:
> My father-in-law's seeing popups that say
> "You have chosen to download upd.exe. What would you like Firefox
> to do with it?"
> It sounds like this is a vnc exploit:
> http://www.castlecops.com/p803000-Vnc_server_exploited_and_auto_ran_this_download.html
>
> So if you have installed VNC on anybody's computer
> to help you support them, now's a very good time to
> either uninstall it, or updated it and tighten security
> (e.g. by restricting access by IP address).
Indeed.
>
> This has been going on for about a week, judging by a little
> web searching I did for problem reports.
> - Dan
Thanks for the heads up.
A couple more tips:
VNC can be deployed behind the firewall and accessed over SSH or other
VPN/tunnel solution. If that isn't available then you can have the client
do a reverse listener so that they initiate the connection. For example if
they are running zone alarm or some such.
_______________________________________________
Lula mailing list
Lula at lula.org
http://www.lula.org/mailman/listinfo/lula
More information about the Lula
mailing list