VYPR
Unrated severityNVD Advisory· Published Nov 10, 2009· Updated Jun 16, 2026

CVE-2009-3923

CVE-2009-3923

Description

The VirtualBox 2.0.8 and 2.0.10 web service in Sun Virtual Desktop Infrastructure (VDI) 3.0 does not require authentication, which allows remote attackers to obtain unspecified access via vectors involving requests to an Apache HTTP Server.

Affected products

4
  • cpe:2.3:a:sun:virtualbox:2.0.10:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:sun:virtualbox:2.0.10:*:*:*:*:*:*:*
    • cpe:2.3:a:sun:virtualbox:2.0.8:*:*:*:*:*:*:*
  • cpe:2.3:a:sun:virtual_desktop_infrastructure:3.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:sun:virtual_desktop_infrastructure:3.0:*:*:*:*:*:*:*
    • (no CPE)range: =3.0

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.