| VID |
24034 |
| Severity |
30 |
| Port |
5800,5801,5802 |
| Protocol |
TCP |
| Class |
BackDoor |
| Detailed Description |
Remote control program, VNC HTTP is detected.
VNC (Virtual Network Computer) by AT&T Laboratories Cambridge is a freely available remote control program designed for use with many architectures, such as Windows, UNIX, and the Macintosh. Remote control programs can allow a remote user to perform administrative tasks.
* References:
http://www.iss.net/security_center/static/1894.php
http://www.uk.research.att.com/vnc/
http://www.securiteam.com/tools/Brute_forcing_VNC_passwords.html |
| Recommendation |
Remove VNC if it is not authorized or is not needed.
If this program is found on the system, and was not installed by authorized personnel, it may be an indication that an attacker has already compromised your system. In this case, you reinstall the system and install all applicable security fixes. |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
