114 matches found
VMware vSphere Client Detection
Binary data 9591.prm...
PT-2016-30: XML External Entity Injection in vSphere Client
The specialists of the Positive Research center have detected an XML External Entity Injection in vSphere Client. Vulnerability in the vSphere Client allows attackers to obtain sensitive information by tricking a user to connect to a malicious vCenter Server or ESXi. How to fix Update your softwa...
KLA10452 Multiple vulnerabilities in VMware products
Multiple serious vulnerabilities have been found in VMware products. Malicious users can exploit these vulnerabilities to gain privileges or cause denial of service. Below is a complete list of vulnerabilities 1. Vectors related to file write can be exploited locally; 2. Improper input validation...
Storage vMotion of Instant Recovery fails with “The method is disabled by ‘’”
Challenge When attempting to migrate an Instant Recovery VM to a production datastore using VMware Storage vMotion, the following error occurs: The method is disabled by 'vm-' Call 'VirtualMachine.Relocate' for object 'vmname' on vCenter Server 'vCenterName' failed. Solution To correct this issue...
VMware vSphere Client Multiple Vulnerabilities (VMSA-2014-0006)
The version of vSphere Client installed on the remote Windows host is is affected by the following vulnerabilities in the OpenSSL library : - An error exists in the function 'ssl3readbytes' that could allow data to be injected into other sessions or allow denial of service attacks. Note this issu...
VMSA-2014-0003 VMware vSphere Client updates address security vulnerabilities
VMware vSphere Client updates address security vulnerabilities OpenVAS Vulnerability Test $Id: gbVMSA-2014-0003.nasl 6663 2017-07-11 09:58:05Z teissa $ VMSA-2014-0003: VMware vSphere Client updates address security vulnerabilities Authors: Michael Meyer Copyright: Copyright c 2014 Greenbone...
VMware ESXi/ESX vSphere Client updates address security vulnerabilities (VMSA-2014-0003)
VMware vSphere Client updates address security vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
VMware vSphere Client Multiple Vulnerabilities (VMSA-2014-0003)
The version of vSphere Client installed on the remote Windows host is affected by the following vulnerabilities : - An error exists related to the vSphere Client that could allow an updated vSphere Client to be downloaded from an untrusted source. CVE-2014-1209 - An error exists related to the...
vSphere Client任意文件下载漏洞
Bugtraq ID:66772 CVE ID:CVE-2014-1209 VMware vCenter是VMware vSphere套件中一个强大的主机和虚拟机集中管理组件。 VMware vSphere Client 4.0, 4.1, 5.0 Update 3之前版本, 5.1 Update 2之前版本没有正确验证Client文件的更新,这可使远程攻击者触发任意程序的下载和执行。 0 VMWare vSphere Client 5.x VMWare vSphere Client 4.x 目前厂商已经发布了升级补丁以修复漏洞,请下载使用:...
Design/Logic Flaw
VMware vSphere Client 5.0 before Update 3 and 5.1 before Update 2 does not properly validate X.509 certificates, which allows man-in-the-middle attackers to spoof SSL servers via a crafted certificate...
Design/Logic Flaw
VMware vSphere Client 4.0, 4.1, 5.0 before Update 3, and 5.1 before Update 2 does not properly validate updates to Client files, which allows remote attackers to trigger the downloading and execution of an arbitrary program via unspecified vectors...
CVE-2014-1209
VMware vSphere Client 4.0, 4.1, 5.0 before Update 3, and 5.1 before Update 2 does not properly validate updates to Client files, which allows remote attackers to trigger the downloading and execution of an arbitrary program via unspecified vectors...
VMSA-2014-0003 : VMware vSphere Client updates address security vulnerabilities
a. vSphere Client Insecure Client Download vSphere Client contains a vulnerability in accepting an updated vSphere Client file from an untrusted source. The vulnerability may allow a host to direct vSphere Client to download and execute an arbitrary file from any URI. This issue can be exploited ...
KLA10436 Multiple vulnerabilities in VMware vSphere Client
Multiple critical vulnerabilities have been found in VMware vSphere. Malicious users can exploit these vulnerabilities to execute arbitrary code or bypass security. Below is a complete list of vulnerabilities 1. An improper client file update validation can be exploited remotely; 2. An improper...
VMSA-2014-0003:VMware vSphere Client updates address security vulnerabilities
VMSA-2014-0003 VMware vSphere Client updates address security vulnerabilities VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2014-0003 VMware Security Advisory Synopsis: VMware vSphere Client updates address security vulnerabilities VMware Security Advisory Issue date:...
How to reinstall vSphere Web Client plug-in for Veeam Backup & Replication
Article Applicability This article is regarding the Local vSphere Client Plug-in only. Veeam Backup Enterprise Manager offers the following configurations of the vSphere Client plug-in: Local vSphere Client Plug-in -- For vSphere Client 7.0.0.x or earlier, the plug-in is installed locally on the...
Memory corruption
VMware vCenter Server 4.0 before Update 4b and 4.1 before Update 3a, VMware VirtualCenter 2.5, VMware vSphere Client 4.0 before Update 4b and 4.1 before Update 3a, VMware VI-Client 2.5, VMware ESXi 3.5 through 4.1, and VMware ESX 3.5 through 4.1 do not properly implement the management...
CVE-2013-1405
CVE-2013-1405 affects multiple VMware products (vCenter Server, VirtualCenter, vSphere Client, VI-Client, ESXi/ESX 3.5–4.1). A flaw in the management authentication protocol allows remote servers to trigger code execution or memory corruption via unspecified vectors. VMware’s VMSA-2013-0001 descr...
VMware vSphere Client Memory Corruption (VMSA-2013-0001)
The version of vSphere Client installed on the remote Windows host is potentially affected by a memory corruption issue in the authentication mechanism. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid64559; scriptversion"1.8"; scriptcvsdate"Date: 2019/12/04";...
VMware vSphere Client Installed
VMware vSphere Client, a client application for connecting to VMware vSphere Server, is installed on the remote Windows host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid64558; scriptversion"1.9"; scriptsetattributeattribute:"pluginmodificationdate",...