CVE-2011-0011
qemu-kvm before 0.11.0 disables VNC authentication when the password is cleared, which allows remote attackers to bypass authentication and establish VNC sessions.
Date published : 2012-06-21
https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/697197