My company uses the Cisco Security Agent for Host Intrustion Detection. When I open an ultraVNC session (version 1.0.0 RC18), my host IDS alarms with the following message:
"The process "c:\program files\ultravnc\vncviewer.exe" is attempting to insert the code in "c:\program files\ultravnc\vncviewer.exe" into all running processes. This may be symtomatic of a trojan. To prevent further execution, choose "terminate""
If I say "don't terminate", the session runs fine.
Any guesses why my host IDS is seeing this activity?