Unrated severityNVD Advisory· Published May 5, 2006· Updated Jun 16, 2026
CVE-2006-2206
CVE-2006-2206
Description
The MS-Logon authentication scheme in UltraVNC (aka Ultr@VNC) 1.0.1 uses weak encryption (XOR) for challenge/response, which allows remote attackers to gain privileges by sniffing and decrypting passwords.
Affected products
2Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.