Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Strange output at VNC Bypass script.

From: Patrik Karlsson <patrik () cqure net>
Date: Thu, 9 Sep 2010 07:03:44 +0200
Hi Richard,

On 9 sep 2010, at 04.51, Richard Miles wrote:


Hi

I was using the VNC bypass script and I got a strange output...

Host is up (0.16s latency).
PORT     STATE SERVICE
5800/tcp open  vnc-http
5900/tcp open  vnc
|_banner: RFB 003.003\x0A\x00\x00\x00\x00\x00\x00\x00\x1AToo many secu...

What it means?

Recent version of RealVNC (and some of the other VNC's) include a security mechanism that prevents an IP from 
connection/authenticating if it has made to many attempts to do so.
A simple connection to the port running the service is considered an attempt, and after 5 of them the IP address is 
blocked. For more information see:
http://kb.realvnc.com/questions/23/I%27m+receiving+the+error+%22%27Too+many+security+failures%22.



Also, there is a script that check for VNC without password?


Yes, vnc-info should be able to tell you if the service is missing a password, if your IP has not been blocked.


Thanks

Regards
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/



//Patrik
--
Patrik Karlsson
http://www.cqure.net
http://www.twitter.com/nevdull77





_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/
Previous By Date Next
Previous By Thread Next

Current thread: