On Tue Nov 14 2006 at 17:14, Bob Babcock wrote:
> The remote VNC server chose security type #0 (Invalid)
> Any user can connect to it without authentication, and thus take
> control of this machine.
> and other times get:
[snip]
Try applying this patch (or wait for a while and run
nessus-update-plugins). The script should be more robust.
*** vnc_security_types.nasl 23 May 2006 17:33:55 -0000 1.5
--- vnc_security_types.nasl 14 Nov 2006 16:44:15 -0000
***************
*** 68,74 ****
if (major == 3 && minor >= 3 && minor < 7)
{
r = recv(socket: s, min: 4, length: 4);
! if (strlen(r) != 4)
{
debug_print('Could not read security type\n');
exit(0);
--- 68,74 ----
if (major == 3 && minor >= 3 && minor < 7)
{
r = recv(socket: s, min: 4, length: 4);
! if (strlen(r) < 4)
{
debug_print('Could not read security type\n');
exit(0);
_______________________________________________
Nessus mailing list
[email protected]
http://mail.nessus.org/mailman/listinfo/nessus
