CVE-2009-3923

Currently unrated

Key Information:

Vendor
Oracle
Status
Virtualbox
Virtual Desktop Infrastructure
Vendor
CVE Published:
10 November 2009

Summary

The VirtualBox 2.0.8 and 2.0.10 web service in Sun Virtual Desktop Infrastructure (VDI) 3.0 does not require authentication, which allows remote attackers to obtain unspecified access via vectors involving requests to an Apache HTTP Server.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/54136
vdb-entryx_refsource_XF
http://sunsolve.sun.com/search/document.do?assetkey=1-66-...
vendor-advisoryx_refsource_SUNALERT
http://sunsolve.sun.com/search/document.do?assetkey=1-21-...
x_refsource_CONFIRM

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.