Vulnerabilities > CVE-2002-0994 - Unspecified vulnerability in SUN PCI II Driver 2.3
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN sun
exploit available
Summary
SunPCi II VNC uses a weak authentication scheme, which allows remote attackers to obtain the VNC password by sniffing the random byte challenge, which is used as the key for encrypted communications.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Sun SunPCi II VNC Software 2.3 Password Disclosure Vulnerability. CVE-2002-0994. Local exploit for unix platform |
| id | EDB-ID:21592 |
| last seen | 2016-02-02 |
| modified | 2002-07-03 |
| published | 2002-07-03 |
| reporter | Richard van den Berg |
| source | https://www.exploit-db.com/download/21592/ |
| title | Sun SunPCi II VNC Software 2.3 Password Disclosure Vulnerability |
References
- http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0003.html
- http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0003.html
- http://www.iss.net/security_center/static/9476.php
- http://www.iss.net/security_center/static/9476.php
- http://www.securityfocus.com/bid/5146
- http://www.securityfocus.com/bid/5146