CVE-2016-5008

2016-07-13T11:59:05
ID CVE-2016-5008
Type cve
Reporter NVD
Modified 2018-03-15T21:29:01

Description

libvirt before 2.0.0 improperly disables password checking when the password on a VNC server is set to an empty string, which allows remote attackers to bypass authentication and establish a VNC session by connecting to the server.