8.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:S/C:C/I:C/A:C
0.972 High
EPSS
Percentile
99.8%
a. Service Console update for cpioThe service console package cpio is updated to version 2.5-6.RHEL3 for ESX 3.x versions and updated to version 2.6-23.el5_4.1 for ESX 4.x versions. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2005-4268 and CVE-2010-0624 to the issues addressed in the update for ESX 3.x and the names CVE-2007-4476 and CVE-2010-0624 to the issues addressed in the update for ESX 4.x. Column 4 of the following table lists the action required to remediate the vulnerability in each release, if a solution is available.
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4268
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4476
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5302
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5303
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0624
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1168
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1321
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1447
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2063