6 matches found
EUVD-2011-1786
Malware in sbrugna...
CVE-2011-1788
vCenter Server in VMware vCenter 4.0 before Update 3 and 4.1 before Update 1 allows local users to discover the SOAP session ID via unspecified vectors...
Code injection
vCenter Server in VMware vCenter 4.0 before Update 3 and 4.1 before Update 1 allows local users to discover the SOAP session ID via unspecified vectors...
CVE-2011-1788
vCenter Server in VMware vCenter 4.0 before Update 3 and 4.1 before Update 1 allows local users to discover the SOAP session ID via unspecified vectors...
CVE-2011-1788
CVE-2011-1788 is discussed in VMware advisory VMSA-2011-0008 and related Nessus plugin; it covers SOAP session ID disclosure in vCenter Server as part of multiple VMware vulnerabilities. Connected documents also describe: (1) CVE-2011-0426 (directory traversal) affecting vCenter Server, VirtualCe...
VMSA-2011-0008 : VMware vCenter Server and vSphere Client security vulnerabilities
a. vCenter Server Directory Traversal vulnerability A directory traversal vulnerability allows an attacker to remotely retrieve files from vCenter Server without authentication. In order to exploit this vulnerability, the attacker will need to have access to the network on which the vCenter Serve...