*****************************************************************
*                                                               *
*                   VNC Bypass Authorization Tool Package       *
*                               Packaged by pingywon            *
*                                                               *
*                               www.illmob.org '06              *
*                                                               *
*****************************************************************




Original flaw found - http://www.intelliadmin.com/blog/2006/05/security-flaw-in-realvnc-411.html

Vncscan.exe credit - heapoverflow.com
modified VNC client Credit - ?
range.bat credit - who cares 



OK, There was a major security flaw found in most versions on VNC 4.1.1 you can read about it at the above link if you care. The point is that you can bypass any password on a VNC4.1.1 install with the included tools.

unzip all these tools to a dir.
edit the "range.bat" at the end of the line "127.0.0.1-127.0.0.255" edit that to the actual IP range you want to scan. Save it. With all the files in the same dir, just double click the range.bat ...and wait. when the scanner is done you will have a .txt file that will show any vuln hosts. 

If you find a vuln host simple open up the VNCViewer and you will be able to connect.

Thats it!
disclaimer - I did nothing more then bring all these tools together into one zip file :)




SHOUTZ - [ill]will - we miss ya brother, morning_wood Spic, z3r0, and all our boys over at g00ns


~pingywon

www.illmob.org
www.freeillwill.com (buy some stickers and help support [ill]will