New Vulnerability for AV's, AS's and Windows???

[Guest]

http://isc.sans.org/diary.php?date=2006-05-15
http://www.securityfocus.com/bid/17934/info
List about the affected products is located at
http://www.securityfocus.com/bid/17934/info

Some examples about products listed:
Norton AV, Kaspersky AV, AVG AV, Norman AV, Ad-Aware, Spybot Search&Destroy
and all Windows versions from NT4.0SP1 to Windows Server 2003 SP1.

 

[Bill Sanderson MVP]

Thanks--I have ISC.sans.org as the home page on one machine I work from
regularly, and I missed that one for some reason.
I don't have any office machines with 5900 open to the world, but I do have
individual client home machines set that way--but they are using UltraVNC,
I'm please to say.

 

[NoOp]

Thanks--I have ISC.sans.org as the home page on one machine I work from
regularly, and I missed that one for some reason.
I don't have any office machines with 5900 open to the world, but I do have
individual client home machines set that way--but they are using UltraVNC,
I'm please to say.

Don't forget that you can easily change the port numbers from 5900 and
5800 to something else via the UltraVNC "Admin Properties" console. This
doesn't protect you entirely, but does make it harder for someone
snooping for open VNC ports to find you.