Vulnerabilities > CVE-2002-0994 - Unspecified vulnerability in SUN PCI II Driver 2.3

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
sun
exploit available

Summary

SunPCi II VNC uses a weak authentication scheme, which allows remote attackers to obtain the VNC password by sniffing the random byte challenge, which is used as the key for encrypted communications.

Vulnerable Configurations

Part Description Count
Application
Sun
1

Exploit-Db

descriptionSun SunPCi II VNC Software 2.3 Password Disclosure Vulnerability. CVE-2002-0994. Local exploit for unix platform
idEDB-ID:21592
last seen2016-02-02
modified2002-07-03
published2002-07-03
reporterRichard van den Berg
sourcehttps://www.exploit-db.com/download/21592/
titleSun SunPCi II VNC Software 2.3 Password Disclosure Vulnerability