Back to search
CVE-2002-1511
Published: Sep 1, 2004
Modified: Aug 8, 2024
PUBLISHED
Description
The vncserver wrapper for vnc before 3.3.3r2-21 uses the rand() function instead of srand(), which causes vncserver to generate weak cookies.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
56161
vendor-advisory
x_refsource_SUNALERT
CLSA-2003:640
vendor-advisory
x_refsource_CONECTIVA
http://changelogs.credativ.org/debian/pool/main/v/vnc/vnc_3.3.6-3/changelog
x_refsource_CONFIRM
RHSA-2003:041
vendor-advisory
x_refsource_REDHAT
vnc-rand-weak-cookie(11384)
vdb-entry
x_refsource_XF
MDKSA-2003:022
vendor-advisory
x_refsource_MANDRAKE
200302-15
vendor-advisory
x_refsource_GENTOO
RHSA-2003:068
vendor-advisory
x_refsource_REDHAT
6905
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now