Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2013-1659
HistoryOct 03, 2022 - 4:14 p.m.

CVE-2013-1659

2022-10-0316:14:47
[email protected]
web.nvd.nist.gov
28
vmware
vcenter server
esxi
nfc protocol
man-in-the-middle
code execution
denial of service
cve-2013-1659

CVSS2

7.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

AI Score

7.5

Confidence

Low

EPSS

0.001

Percentile

46.1%

JSON

VMware vCenter Server 4.0 before Update 4b, 5.0 before Update 2, and 5.1 before 5.1.0b; VMware ESXi 3.5 through 5.1; and VMware ESX 3.5 through 4.1 do not properly implement the Network File Copy (NFC) protocol, which allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption) by modifying the client-server data stream.

Affected configurations

NVD
Node
vmwarevcenter_serverMatch4.0
OR
vmwarevcenter_serverMatch4.0update_1
OR
vmwarevcenter_serverMatch4.0update_2
OR
vmwarevcenter_serverMatch4.0update_3
OR
vmwarevcenter_serverMatch4.0update_4
OR
vmwarevcenter_serverMatch4.0update_4a
Node
vmwarevcenter_server_applianceMatch5.1
OR
vmwarevcenter_server_applianceMatch5.1.0a
Node
vmwarevcenter_serverMatch5.0
OR
vmwarevcenter_serverMatch5.0update_1
Node
vmwareesxiMatch3.5
OR
vmwareesxiMatch3.51
OR
vmwareesxiMatch4.0
OR
vmwareesxiMatch4.01
OR
vmwareesxiMatch4.02
OR
vmwareesxiMatch4.03
OR
vmwareesxiMatch4.04
OR
vmwareesxiMatch4.1
OR
vmwareesxiMatch4.11
OR
vmwareesxiMatch4.12
OR
vmwareesxiMatch5.0
OR
vmwareesxiMatch5.01
OR
vmwareesxiMatch5.02
OR
vmwareesxiMatch5.1
Node
vmwareesxiMatch3.5
OR
vmwareesxiMatch3.51
OR
vmwareesxiMatch4.0
OR
vmwareesxiMatch4.01
OR
vmwareesxiMatch4.02
OR
vmwareesxiMatch4.03
OR
vmwareesxiMatch4.04
OR
vmwareesxiMatch4.1
VendorProductVersionCPE
vmwarevcenter_server4.0cpe:/a:vmware:vcenter_server:4.0:::
vmwarevcenter_server4.0cpe:/a:vmware:vcenter_server:4.0:update_4a::
vmwarevcenter_server4.0cpe:/a:vmware:vcenter_server:4.0:update_1::
vmwarevcenter_server4.0cpe:/a:vmware:vcenter_server:4.0:update_4::
vmwarevcenter_server4.0cpe:/a:vmware:vcenter_server:4.0:update_3::
vmwarevcenter_server4.0cpe:/a:vmware:vcenter_server:4.0:update_2::

Related

cvelist 1
seebug 1
openvas 6
prion 1
nessus 5
nvd 1
vmware 1
cvelist
cvelist
CVE-2013-1659
2022-10-03 16:14:47
seebug
seebug
VMware vCenter, ESXi, ESX NFC协议内存破坏漏洞
2013-02-28 00:00:00
openvas
openvas
VMware Security Updates for vCenter Server (VMSA-2013-0003)
2014-01-09 00:00:00
VMware Security Updates for vCenter Server (VMSA-2013-0003)
2014-01-09 00:00:00
VMSA-2013-0003 VMware vCenter Server, ESXi and ESX address an NFC Protocol memory corruption and third party library security issues. (remote check)
2013-12-03 00:00:00
prion
prion
Memory corruption
2013-02-22 20:55:00
nessus
nessus
VMware vCenter Server NFC Protocol Code Execution (VMSA-2013-0003)
2013-03-13 00:00:00
VMSA-2013-0003 : VMware vCenter Server, ESXi and ESX address an NFC Protocol memory corruption and third-party library security issues.
2013-02-22 00:00:00
ESXi 5.1 < Build 911593 Multiple Vulnerabilities (remote check)
2013-11-13 00:00:00
nvd
nvd
CVE-2013-1659
2013-02-22 20:55:01
vmware
vmware
VMware vCenter Server, ESXi and ESX address an NFC Protocol memory corruption and third party library security issues.
2013-02-21 00:00:00

CVSS2

7.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

AI Score

7.5

Confidence

Low

EPSS

0.001

Percentile

46.1%

JSON
Related for CVE-2013-1659
cvelist1seebug1openvas6prion1nessus5nvd1vmware1