Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
certCERTVU:822476
HistoryAug 24, 2006 - 12:00 a.m.

VMware ESX Server management interface logs passwords in cleartext in a world-readable file

2006-08-2400:00:00
www.kb.cert.org
10

0.0005 Low

EPSS

Percentile

15.2%

JSON

Overview

Certain versions of VMware ESX Server store passwords in a cleartext file that all users have read permissions to.

Description

Per the VMware ESX Server datasheet:

ESX Server installs directly on the server hardware, or “bare metal,” and inserts a robust virtualization layer between the hardware and the operating system. ESX Server partitions a physical server into multiple secure and portable virtual machines that can run side by side on the same physical server.

VMware ESX server includes a web interface that can be used for remote management. On affected versions, when a user changes their password, the new credentials are recorded in the server logs as plain text files in directories that all users can read.

The affected versions of VMware ESX server are:

* VMware ESX prior to 2.5.3 upgrade patch 2
* VMware ESX prior to 2.1.3 upgrade patch 1
* VMware ESX prior to 2.0.2 upgrade patch 1

Impact

Local users can read the passwords of any user who changed their password through the web interface.

Solution

Upgrad****eVMware has issued upgrades that address this issue. Refer to VMware ESX Server 2.5.3 Upgrade Patch 2, VMware ESX Server 2.1.3 Upgrade Patch 1, or VMware ESX Server 2.0.2 Upgrade Patch 1 for more details.

Vendor Information

822476

Filter by status: All Affected Not Affected Unknown

Filter by content: __ Additional information available

__ Sort by: Status Alphabetical

Expand all

Javascript is disabled. Click here to view vendors.

VMware __ Affected

Updated: August 24, 2006

Status

Affected

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

See VMware Security Advisory VMSA-2006-0004 for more details.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23822476 Feedback>).

CVSS Metrics

Group Score Vector
Base
Temporal
Environmental

References

Acknowledgements

Thanks to Corsaire for reporting this vulnerability.

This document was written by Ryan Giobbi.

Other Information

CVE IDs: CVE-2005-3620
Severity Metric: 0.31 Date Public:

Related

cve 2
securityvulns 2
ubuntucve 1
prion 1
cve
cve
CVE-2005-3620
2005-12-31 05:00:00
CVE-2007-5024
2007-09-21 19:17:00
securityvulns
securityvulns
Corsaire Security Advisory - VMware ESX Server Password Disclosure in Log issue
2006-08-02 00:00:00
VMSA-2006-0004 Cross site scripting vulnerability and other fixes
2006-08-02 00:00:00
ubuntucve
ubuntucve
CVE-2007-5024
2007-09-21 00:00:00
prion
prion
Design/Logic Flaw
2007-09-21 19:17:00

0.0005 Low

EPSS

Percentile

15.2%

JSON
Related for VU:822476
cve2securityvulns2ubuntucve1prion1