virt-v2v prior to 0.8.4 does not preserve the VNC console password when converting a guest, which allows local users to bypass the intended VNC authentication by connecting without a password.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
matthew booth virt-v2v 0.6.0 |
||
matthew booth virt-v2v 0.5.4 |
||
matthew booth virt-v2v 0.5.3 |
||
matthew booth virt-v2v 0.5.2 |
||
matthew booth virt-v2v 0.8.2 |
||
matthew booth virt-v2v 0.8.1 |
||
matthew booth virt-v2v 0.8.0 |
||
matthew booth virt-v2v 0.7.1 |
||
matthew booth virt-v2v 0.4.0 |
||
matthew booth virt-v2v 0.3.2 |
||
matthew booth virt-v2v 0.3.0 |
||
matthew booth virt-v2v 0.2.0 |
||
matthew booth virt-v2v 0.1.0 |
||
matthew booth virt-v2v 0.6.3 |
||
matthew booth virt-v2v 0.6.1 |
||
matthew booth virt-v2v 0.5.1 |
||
matthew booth virt-v2v 0.4.10 |
||
matthew booth virt-v2v |
||
matthew booth virt-v2v 0.7.0 |
||
matthew booth virt-v2v 0.6.2 |
||
matthew booth virt-v2v 0.5.0 |
||
matthew booth virt-v2v 0.4.9 |
||
redhat enterprise linux 6.0 |