CVE-2008-5714

EPSS 0.75%

kvm - several vulnerabilities

Published: 12/24/2008Modified: 4/28/2026

Description

Off-by-one error in monitor.c in Qemu 0.9.1 might make it easier for remote attackers to guess the VNC password, which is limited to seven characters where eight was intended.

Affected packages (3)

Debian/kvmfrom 0, < 72+dfsg-5~lenny3
Debian/kvmfrom 0, < 72+dfsg-5+squeeze1
Debian/qemufrom 0, < 0.9.1-10

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2008-5714