[nsp-sec] VNC scanning
David Freedman
david.freedman at uk.clara.net
Fri Oct 30 17:04:10 EDT 2009
Have caught a box here scanning for VNC servers incrementally (i.e 10.0.0.1:5900, 10.0.0.2:5900 etc..)
managed to send around 2 Million of these SYNs in a netflow 5 minute sampling period.
(around 8K/second)
Is this anything new? Last one I'm aware of was a realvnc exploit earlier this year.
Dave.
------------------------------------------------
David Freedman
Group Network Engineering
Claranet Limited
http://www.clara.net
More information about the nsp-security
mailing list