RealVNC 4.1.2 update to patch security vulnerability



A few hours back, I updated My first post on the RealVNC 4.1.1 vulnerability and just saw another story that did not specify WHICH variation of VNC was at risk. TightVNC and UltraVNC seem to be immune according to the discoverer of the flaw. And as far as I’ve seen, there hasn’t been any contradiction of that.


I did want to get another post in on it so that the security patch had it’s own seperate article as I guess the update to the other might have been a bit too obscure. It looks like RealVNC had fairly quick turnaround from notification to patch which is nice to see. There are exploits in the wild, so if you have RealVNC running, check on the version and check for the Realvnc 4.1.2 update. By the way, this only seemed to affect RealVNC 4.1.1 on Windows I’ve read reports of tests against Linux based RealVNC 4.1.1 with no problems, but just in case – check and see if you have updated linux packages for realvnc based vnc servers.

Related Posts

Blog Traffic Exchange Related Posts
  • Two new Windows exploits in the Wild | Wordpad Text Converter | Internet Explorer 7 XML Parser In the wake of a huge patch Tuesday, Microsoft has two new fires to be fighting. There are apparently "limited and targeted" attacks against a flaw with the Text converter component of Wordpad. Affected systems include Windows 2000 SP4, XP up to SP2, Server 2003 SP1 and 2. Vista is......
  • Rsync for easy (and quick) backups I've got to say, I haven't spent ENOUGH time with rsync to really be fluent in how I could put it to use.... A week or so ago I was reading this list of essential Linux software by a guy that moved from Mac OS X to linux because he......
  • But it's brand new, how could it have so many updates? This morning I was doing a fresh install of Windows XP SP2 into a Virtual Machine. So far, things are fine I went through windowsupdate and found 3 updates the first time, then rebooted and hit windowsupdate again to see 55 updates available. A lot of times when I set......
Blog Traffic Exchange Related Websites
  • Steadfast Finances was Hacked, Now Restored. (Thanks HostGator!) Last week, several lines of "seemingly malicious code" found its way into SF's theme. This prompted Google, Firefox, Google Chrome and even Twitter, to quickly label this blog as a "Reported Attack Site". If you happened to visit SF from the RSS feed, the email subscriber list, or basically clicked......
  • iPhone Reveals Passwords in under 6 Minutes with this Attack German Researchers have been able to attack and hack the iPhone in under 6 minutes. The attack reveals passwords stored in a locked iPhone. The attackers have able to retrieve the data even without getting past the Passcode screen. The hack works on latest iOS 4.2.1. The attack requires possession......
  • Google Friend Connect Goes Live A few days ago I got an email from Google telling me that I had been whitelisted to use Google Friend Connect. I took a glance at the Friend Connect pages, fooled around with it a little bit, but I didn't yet put any widgets on my site. Then, yesterday......
PDF24    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site