The VirtualBox 2.0.8 and 2.0.10 web service in Sun Virtual Desktop Infrastructure (VDI) 3.0 does not require authentication, which allows remote attackers to obtain unspecified access via vectors involving requests to an Apache HTTP Server.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2009-11-09 16:30
Updated : 2017-08-16 18:31
NVD link : CVE-2009-3923
Mitre link : CVE-2009-3923
JSON object : View
CWE
CWE-287
Improper Authentication
Products Affected
sun
- virtual_desktop_infrastructure
- virtualbox