2012-06-21 15:00:00
redhat
PUBLISHED
qemu-kvm before 0.11.0 disables VNC authentication when the password is cleared, which allows remote attackers to bypass authentication and establish VNC sessions.