VNC Exploit Fix
Option #1
Upgrade your installation of VNC to version 4.1.2 or above.
1) Go to the RealVNC website, http://www.realvnc.com
2) Choose the link, “VNC software can be downloaded here.”
3) Choose the link, “Download & use” under the Free Edition heading.
4) Skip the personal details section and choose the button “Proceed to download”
5) Choose the top Download button, which is for the 721K Executable.
6) Read and accept the terms and conditions, choose the “Download” button.
7) When prompted, choose either Open or Run. This will start the installation wizard.
8) Follow the installation wizard steps to reinstall/upgrade your copy of RealVNC.
Option #2
Close VNC access to your network.
In order to allow incoming VNC connections, your router was configured to forward VNC ports to an internal machine. These ports are typically 5500, 5800 and/or 5900. By removing the forwarding for these ports on your router, you will disable any incoming VNC connection requests, thus closing your “door” for the VNC exploit. Because there are many different brands and models of routers, you may need to contact BHD or consult your IT department for assistance.
You may also want to consider changing the default port so VNC is not waiting on 5900. by choosing a random port Hackers will not know what port is opened for what program.