Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 VNC:INVALID:CLIENT-REQUEST

Severity

 Low

Recommended

 No

Recommended Action

 Drop

Category

 VNC

Release Date

 2003/04/22

Update Number

 1213

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

VNC: Invalid Client Request


This protocol anomaly triggers when it detects a VNC client request that is sent by a VNC server. VNC servers should receive VNC requests, not send them. Triggering this protocol anomaly can indicate that the VNC client is invalid, or that the VNC client is sending nested requests to the VNC server.

Extended Description

Detection of a VNC session initiation request originating from a VNC server may indicate that a software or network transmission error has occurred. It may also indicate that a malicious user is running a nested session in an attempt to bypass access control policies and/or mask a malicious user's true originating IP address.

References

  • URL: http://www.realvnc.com/docs/rfbproto.pdf

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out