Better late than never!
May 2006 Summary & TrendsThe month of May could be considered fairly average compared to previous months, despite the disclosure of a critical vulnerability in the popular VNC client, RealVNC. In fact, only one reported IT Incident was associated with the vulnerability disclosure, despite the increased levels of VNC (tcp/5900) scanning. This indicates that either RealVNC use itself may not be widespread on campus, most RealVNC users patched upon receiving notification of the vulnerability, or most installations of RealVNC had controls (such as a firewall) in place to prevent unknown IP addresses from connecting to the RealVNC server.
Posted by Matthew Wirges on June 28, 2006, in Handlers Log.