6 matches found
CVE-2013-1405
VMware vCenter Server 4.0 before Update 4b and 4.1 before Update 3a, VMware VirtualCenter 2.5, VMware vSphere Client 4.0 before Update 4b and 4.1 before Update 3a, VMware VI-Client 2.5, VMware ESXi 3.5 through 4.1, and VMware ESX 3.5 through 4.1 do not properly implement the management...
Conceptronic C54APM多个开放重定向漏洞
CVE ID:CVE-2013-1405 Conceptronic C54APM是一款无线AP设备。 Conceptronic C54APM存在多个开放重定向漏洞,允许远程攻击者利用漏洞构建恶意URI,诱使用户解析,可重定向用户通信,进行网络钓鱼等攻击。漏洞是由于goform/formWlSiteSurvey脚本不正确过滤'submit-url'参数及goform/formWlanSetup脚本不正确过滤wlan-url参数。 0 Conceptronic C54APM v2.0 1.26 目前没有详细解决方案提供:...
VMSA-2013-0001 : VMware vSphere security updates for the authentication service and third-party libraries
a. VMware vSphere client-side authentication memory corruption vulnerability VMware vCenter Server, vSphere Client, and ESX contain a vulnerability in the handling of the management authentication protocol. To exploit this vulnerability, an attacker must convince either vCenter Server, vSphere...
CVE-2013-1405
CVE-2013-1405 affects multiple VMware products (vCenter Server, VirtualCenter, vSphere Client, VI-Client, ESXi/ESX 3.5–4.1). A flaw in the management authentication protocol allows remote servers to trigger code execution or memory corruption via unspecified vectors. VMware’s VMSA-2013-0001 descr...
VMware vSphere security updates for the authentication service and third party libraries
a. VMware vSphere client-side authentication memory corruption vulnerabilityVMware vCenter Server, vSphere Client, and ESX contain a vulnerability in the handling of the management authentication protocol. To exploit this vulnerability, an attacker must convince either vCenter Server, vSphere...
VMSA-2013-0001:VMware vSphere security updates for the authentication service and third party libraries
VMSA-2013-0001.5 VMware vSphere security updates for the authentication service and third party libraries VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2013-0001.5 VMware Security Advisory Synopsis: VMware vSphere security updates for the authentication service and third par...