Signature Detail

Short Name	VNC:OVERFLOW:AUTH-RESPONSE
Severity	High
Recommended	No
Category	VNC
Release Date	2003/04/22
Update Number	1213
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

VNC: Auth Response Overflow

This protocol anomaly is a VNC authorization response message that is too long. The VNC protocol specifies 16 as the maximum for authorization response messages.

Extended Description

Detection of an anomalous VNC authorization response could indicate an attack, or a network or configuration error.

References

URL: http://www.realvnc.com/docs/rfbproto.pdf
URL: http://en.wikipedia.org/wiki/VNC
URL: http://www.juniper.net/security/auto/vulnerabilities/vuln2497.html

Signature Detail

Short Name

Severity

Recommended

Category

Release Date

Update Number

Supported Platforms

VNC: Auth Response Overflow

Extended Description

References