|
|
Log in / Subscribe / Register

novnc: VNC session hijacking

Package(s):novnc CVE #(s):CVE-2013-7436
Created:April 6, 2015 Updated:April 8, 2015
Description: From the Mageia advisory:

noVNC before 0.5.1 allows an attacker to steal insecurely set session token cookies, hijacking active or inactive VNC sessions.

Alerts:
Red Hat RHSA-2015:0884-01 novnc 2015-04-23
Red Hat RHSA-2015:0834-01 novnc 2015-04-16
Red Hat RHSA-2015:0833-01 novnc 2015-04-16
Red Hat RHSA-2015:0788-01 novnc 2015-04-08
Mageia MGASA-2015-0133 novnc 2015-04-04
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds