EUVD-2010-4539

Malware in sbrugna...

Default credentials

The Update Installer in VMware ESXi 4.1, when a modified sfcb.cfg is present, does not properly configure the SFCB authentication mode, which allows remote attackers to obtain access via an arbitrary username and password...

CVE-2010-4573

Summary (CVE-2010-4573) : VMware ESXi 4.1 Update Installer may improperly configure SFCB authentication if /etc/sfcb/sfcb.cfg was modified during an upgrade from ESXi 3.5 or 4.0. The result is that SFCB authentication could allow login with any username and password, enabling remote access. The i...

VMware ESXi 4.1 Update Installer SFCB Authentication Flaw

a. ESXi 4.1 Update Installer SFCB Authentication FlawUnder certain conditions, the ESXi 4.1 installer that upgrades an ESXi 3.5 or ESXi 4.0 host to ESXi 4.1 incorrectly handles the SFCB authentication mode. The result is that SFCB authentication could allow login with any username and password...

VMSA-2010-0020:VMware ESXi 4.1 Update Installer SFCB Authentication Flaw

VMSA-2010-0020.1 VMware ESXi 4.1 Update Installer SFCB Authentication Flaw VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2010-0020.1 VMware Security Advisory Synopsis: VMware ESXi 4.1 Update Installer SFCB Authentication Flaw VMware Security Advisory Issue date: 2010-12-21...