CVE Reference: CVE-2011-0011

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2011-0011

Description:
qemu-kvm before 0.11.0 disables VNC authentication when the password is cleared, which allows remote attackers to bypass authentication and establish VNC sessions.

CVE Status:
Candidate

References:

XF
  http://xforce.iss.net/xforce/xfdb/65215

UBUNTU
  http://ubuntu.com/usn/usn-1063-1

SAID
  Secunia Advisory: SA42830
  Secunia Advisory: SA43272
  Secunia Advisory: SA43733
  Secunia Advisory: SA44393

REDHAT
  http://rhn.redhat.com/errata/RHSA-2011-0345.html

OSVDB
  70992

MLIST
  http://www.openwall.com/lists/oss-security/2011/01/10/3
  http://www.openwall.com/lists/oss-security/2011/01/11/1
  http://www.openwall.com/lists/oss-security/2011/01/12/2

MISC


Return to the previous page.