Lucene search
K

14 matches found

OpenVAS
OpenVAS
added 2013/12/04 12:0 a.m.37 views

VMSA-2013-0014 VMware Workstation, Fusion, ESXi and ESX patches address a guest privilege escalation (remote check)

VMware Workstation, Fusion, ESXi and ESX patches address a vulnerability in the LGTOSYNC.SYS driver which could result in a privilege escalation on older Windows-based Guest Operating Systems. OpenVAS Vulnerability Test $Id: gbVMSA-2013-0014remote.nasl 6093 2017-05-10 09:03:18Z teissa $...

7.9CVSS1AI score0.00506EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2013/12/03 12:0 a.m.35 views

VMSA-2013-0011 VMware ESX and ESXi updates to third party libraries (remote check)

VMware has updated VMware ESXi and ESX to address a vulnerability in an unhandled exception in the NFC protocol handler. OpenVAS Vulnerability Test $Id: gbVMSA-2013-0011remote.nasl 6115 2017-05-12 09:03:25Z teissa $ VMSA-2013-0011 VMware ESX and ESXi updates to third party libraries remote check...

4.3CVSS6.3AI score0.01105EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2013/09/02 12:0 a.m.35 views

VMSA-2013-0011 VMware ESX and ESXi updates to third party libraries

VMware has updated VMware ESXi and ESX to address a vulnerability in an unhandled exception in the NFC protocol handler. OpenVAS Vulnerability Test $Id: gbVMSA-2013-0011.nasl 6079 2017-05-08 09:03:33Z teissa $ VMSA-2013-0011 VMware ESX and ESXi updates to third party libraries Authors: Michael...

4.3CVSS0.01105EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2013/04/02 12:0 a.m.25 views

VMSA-2013-0004 VMware ESXi security update for third party library

The remote ESXi is missing one or more security related Updates from VMSA-2013-0004. Relevant Releases ESXi 5.1 without patch ESXi510-201304101 ESXi 5.0 without patch ESXi500-201303101 ESXi 4.0 without patch ESXi400-201305001 ESXi 4.1 without patch ESXi410-201304401 Problem Description The ESXi...

6.8CVSS8.8AI score0.04382EPSS
Exploits1References1
NVD
NVD
added 2012/11/20 5:52 a.m.21 views

CVE-2012-5703

The vSphere API in VMware ESXi 4.1 and ESX 4.1 allows remote attackers to cause a denial of service host daemon crash via an invalid value in a 1 RetrieveProp or 2 RetrievePropEx SOAP request...

5CVSS6.5AI score0.02374EPSS
Exploits0References4
Prion
Prion
added 2012/11/20 5:52 a.m.20 views

Cross site request forgery (csrf)

The vSphere API in VMware ESXi 4.1 and ESX 4.1 allows remote attackers to cause a denial of service host daemon crash via an invalid value in a 1 RetrieveProp or 2 RetrievePropEx SOAP request...

5CVSS7.1AI score0.02374EPSS
Exploits0References4Affected Software2
ThreatPost
ThreatPost
added 2012/11/16 4:11 p.m.15 views

VMware Security Update Fixes DoS, Other Vulnerabilities

Virtualization software maker VMware shipped a security update for its vSphere API yesterday that resolved a denial of service vulnerability in ESX and ESXi, as well as adding a number of open source security updates to the ESX Service Console. The patch affects the following releases: VMware ESX...

0.4AI score
Exploits0References3
Cvelist
Cvelist
added 2012/05/04 4:0 p.m.41 views

CVE-2012-1517

The VMX process in VMware ESXi 4.1 and ESX 4.1 does not properly handle RPC commands, which allows guest OS users to cause a denial of service memory overwrite and process crash or possibly execute arbitrary code on the host OS via vectors involving function pointers...

9.7AI score0.02458EPSS
Exploits0References6
NVD
NVD
added 2011/05/03 10:55 p.m.28 views

CVE-2011-1786

lsassd in Likewise Open /Enterprise 5.3 before build 7845, Open 6.0 before build 8325, and Enterprise 6.0 before build 178, as distributed in VMware ESXi 4.1 and ESX 4.1 and possibly other products, allows remote attackers to cause a denial of service daemon crash via an Active Directory login...

5CVSS6.4AI score0.03012EPSS
Exploits0References10
Cvelist
Cvelist
added 2011/05/03 10:0 p.m.24 views

CVE-2011-1786

lsassd in Likewise Open /Enterprise 5.3 before build 7845, Open 6.0 before build 8325, and Enterprise 6.0 before build 178, as distributed in VMware ESXi 4.1 and ESX 4.1 and possibly other products, allows remote attackers to cause a denial of service daemon crash via an Active Directory login...

6.4AI score0.03012EPSS
Exploits0References10
Cvelist
Cvelist
added 2010/12/22 8:0 p.m.32 views

CVE-2010-4573

The Update Installer in VMware ESXi 4.1, when a modified sfcb.cfg is present, does not properly configure the SFCB authentication mode, which allows remote attackers to obtain access via an arbitrary username and password...

6.9AI score0.02516EPSS
Exploits0References8
CVE
CVE
added 2010/12/22 8:0 p.m.58 views

CVE-2010-4573

Summary (CVE-2010-4573) : VMware ESXi 4.1 Update Installer may improperly configure SFCB authentication if /etc/sfcb/sfcb.cfg was modified during an upgrade from ESXi 3.5 or 4.0. The result is that SFCB authentication could allow login with any username and password, enabling remote access. The i...

9.3CVSS7AI score0.02516EPSS
Exploits0References8Affected Software1
VMware
VMware
added 2010/12/21 12:0 a.m.24 views

VMware ESXi 4.1 Update Installer SFCB Authentication Flaw

a. ESXi 4.1 Update Installer SFCB Authentication FlawUnder certain conditions, the ESXi 4.1 installer that upgrades an ESXi 3.5 or ESXi 4.0 host to ESXi 4.1 incorrectly handles the SFCB authentication mode. The result is that SFCB authentication could allow login with any username and password...

9.3CVSS1.4AI score0.02516EPSS
Exploits0References1Affected Software1
VMware
VMware
added 2010/12/19 12:0 a.m.60 views

VMSA-2010-0020:VMware ESXi 4.1 Update Installer SFCB Authentication Flaw

VMSA-2010-0020.1 VMware ESXi 4.1 Update Installer SFCB Authentication Flaw VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2010-0020.1 VMware Security Advisory Synopsis: VMware ESXi 4.1 Update Installer SFCB Authentication Flaw VMware Security Advisory Issue date: 2010-12-21...

9.3CVSS6.5AI score0.02516EPSS
Exploits0Affected Software1
Rows per page
Query Builder