← Back

CVE-2011-1773

nvd nist
Published: Feb 8, 2014Modified: Apr 29, 2026

JSON object

Loading...
4.4
Vector
AV:L/AC:M/Au:N/C:P/I:P/A:P
Exploitability: 3.4 / Impact: 6.4
Source: NVD

Description

virt-v2v before 0.8.4 does not preserve the VNC console password when converting a guest, which allows local users to bypass the intended VNC authentication by connecting without a password.

Affected (23)

Matthew Booth
1 product
Virt V2v
Redhat
1 product
Enterprise Linux
Configuration A
22 vulnerable
Vulnerable SoftwareAffected Versions
Matthew Booth
Virt V2v
Up to 0.8.3
Virt V2v
Version 0.1.0
Virt V2v
Version 0.2.0
Virt V2v
Version 0.3.0
Virt V2v
Version 0.3.2
Virt V2v
Version 0.4.0
Virt V2v
Version 0.4.10
Virt V2v
Version 0.4.9
Virt V2v
Version 0.5.0
Virt V2v
Version 0.5.1
Virt V2v
Version 0.5.2
Virt V2v
Version 0.5.3
Virt V2v
Version 0.5.4
Virt V2v
Version 0.6.0
Virt V2v
Version 0.6.1
Virt V2v
Version 0.6.2
Virt V2v
Version 0.6.3
Virt V2v
Version 0.7.0
Virt V2v
Version 0.7.1
Virt V2v
Version 0.8.0
Virt V2v
Version 0.8.1
Virt V2v
Version 0.8.2
Configuration B
1 vulnerable
Vulnerable SoftwareAffected Versions
Enterprise Linux
Version 6.0

Related CWEs

CWE-255
CWE-255

References (10)

Source: secalert@redhat.com
Source: secalert@redhat.com
Vendor Advisory
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: secalert@redhat.com
ExploitPatch
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitPatch

Timeline

No history available yet.