PublicDate: 2006-05-15 16:06:00 UTC
Candidate: CVE-2006-2369
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2369
Description:
 RealVNC 4.1.1, and other products that use RealVNC such as AdderLink IP and
 Cisco CallManager, allows remote attackers to bypass authentication via a
 request in which the client specifies an insecure security type such as
 "Type 1 - None", which is accepted even if it is not offered by the server,
 as originally demonstrated using a long password.
Ubuntu-Description:
Notes:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_vnc4: released (4.1.1+xorg1.0.2-0ubuntu1.6.06)
edgy_vnc4: released (4.1.1+xorg1.0.2-0ubuntu1.6.10.1)
feisty_vnc4: released (4.1.1+xorg1.0.2-0ubuntu4)
devel_vnc4: released (4.1.1+xorg1.0.2-0ubuntu4)
upstream_vnc4: needs-triage