Published: 08/02/2014 Updated: 22/04/2019

CVSS v2 Base Score: 4.4 | Impact Score: 6.4 | Exploitability Score: 3.4

VMScore: 392

Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P

virt-v2v prior to 0.8.4 does not preserve the VNC console password when converting a guest, which allows local users to bypass the intended VNC authentication by connecting without a password.

Vulnerable Product	Search on Vulmon	Subscribe to Product
matthew booth virt-v2v 0.6.0
matthew booth virt-v2v 0.5.4
matthew booth virt-v2v 0.5.3
matthew booth virt-v2v 0.5.2
matthew booth virt-v2v 0.8.2
matthew booth virt-v2v 0.8.1
matthew booth virt-v2v 0.8.0
matthew booth virt-v2v 0.7.1
matthew booth virt-v2v 0.4.0
matthew booth virt-v2v 0.3.2
matthew booth virt-v2v 0.3.0
matthew booth virt-v2v 0.2.0
matthew booth virt-v2v 0.1.0
matthew booth virt-v2v 0.6.3
matthew booth virt-v2v 0.6.1
matthew booth virt-v2v 0.5.1
matthew booth virt-v2v 0.4.10
matthew booth virt-v2v
matthew booth virt-v2v 0.7.0
matthew booth virt-v2v 0.6.2
matthew booth virt-v2v 0.5.0
matthew booth virt-v2v 0.4.9
redhat enterprise linux 6.0

Synopsis Low: virt-v2v security and bug fix update Type/Severity Security Advisory: Low Topic An updated virt-v2v package that fixes one security issue and several bugsis now available for Red Hat Enterprise Linux 6The Red Hat Security Response Team has rated this update as having lowsecurity impact A Com ...

CWE-255 http://www.osvdb.org/77558 http://secunia.com/advisories/47086 http://rhn.redhat.com/errata/RHSA-2011-1615.html https://git.fedorahosted.org/cgit/virt-v2v.git/commit/?id=7e9393129116699d1228bb02b9f65b78584582c1 https://bugzilla.redhat.com/show_bug.cgi?id=702754 https://access.redhat.com/errata/RHSA-2011:1615 https://nvd.nist.gov

CVE-2011-1773

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect