Lucene search

[email protected]NVD:CVE-2009-0518

HistoryApr 06, 2009 - 3:30 p.m.

CVE-2009-0518

2009-04-0615:30:04

CWE-200

[email protected]

web.nvd.nist.gov

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

6.3 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

VI Client in VMware VirtualCenter before 2.5 Update 4, VMware ESXi 3.5 before Update 4, and VMware ESX 3.5 before Update 4 retains the VirtualCenter Server password in process memory, which might allow local users to obtain this password.

Affected configurations

NVD

Node

vmwarevmware_esxMatch3.5

vmwarevmware_esxiMatch3.5

vmwarevmware_virtualcenterMatch1.1

vmwarevmware_virtualcenterMatch1.2

vmwarevmware_virtualcenterMatch1.3

vmwarevmware_virtualcenterMatch1.3.1

vmwarevmware_virtualcenterMatch1.4

vmwarevmware_virtualcenterMatch1.4.1

References

lists.vmware.com/pipermail/security-announce/2009/000054.html

seclists.org/fulldisclosure/2009/Apr/0036.html

secunia.com/advisories/34585

www.securityfocus.com/bid/34373

www.vmware.com/security/advisories/VMSA-2009-0005.html

www.vupen.com/english/advisories/2009/0944

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6376

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

6.3 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2009-0518

prion1 cve1 cvelist1 securityvulns2 nessus2 seebug2 vmware1