VMwareVMSA-2013-0009.3

HistoryJul 31, 2013 - 12:00 a.m.

VMware vSphere, ESX and ESXi updates to third party libraries

2013-07-3100:00:00

www.vmware.com

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.862 High

EPSS

Percentile

98.5%

JSON

a. vCenter Server and ESX userworld update for OpenSSL library

The userworld OpenSSL library is updated to version openssl-0.9.8y to resolve multiple security issues.The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2013-0169 and CVE-2013-0166 to these issues.Column 4 of the following table lists the action required to remediate the vulnerability in each release, if a solution is available.

CPENameOperatorVersion
vcenterltvCenter 5.1 Update 2
vcenterltvCenter 5.0 Update 3
vcentereq4.1
vcentereq4.0
esxiltESXi510-201401101-SG
esxiltESXi500-201310101-SG
esxiltESXi410-201307401-SG
esxieq4.0
esxltESX410-201307403-SG
esxeq4.0

Name	Operator	Version
vcenter	lt	vCenter 5.1 Update 2
vcenter	lt	vCenter 5.0 Update 3
vcenter	eq	4.1
vcenter	eq	4.0
esxi	lt	ESXi510-201401101-SG
esxi	lt	ESXi500-201310101-SG
esxi	lt	ESXi410-201307401-SG
esxi	eq	4.0
esx	lt	ESX410-201307403-SG
esx	eq	4.0

Rows per page:

1-10 of 161

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0268

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0338

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0871

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2116

nessus 64

openvas 56

vmware 1

f5 2

centos 3

prion 3

cve 4

redhat 7

oraclelinux 8

ubuntucve 4

altlinux 5

freebsd 2

fedora 4

debian 2

aix 1

freebsd_advisory 1

osv 1

ibm 9

amazon 2

slackware 1

ubuntu 4

securityvulns 3

veracode 3

checkpoint_advisories 1

suse 3

debiancve 2

zdt 2

packetstorm 1

nessus

VMSA-2013-0009 : VMware vSphere, ESX and ESXi updates to third-party libraries

2013-08-02 00:00:00

VMware ESX / ESXi Third-Party Libraries Multiple Vulnerabilities (VMSA-2013-0009) (remote check)

2016-03-04 00:00:00

Scientific Linux Security Update : kernel on SL5.x i386/x86_64 (20130311)

2013-03-13 00:00:00

openvas

VMSA-2013-0009 VMware ESX and ESXi updates to third party libraries

2013-08-07 00:00:00

VMware ESXi/ESX updates to third party libraries (VMSA-2013-0009)

2013-08-07 00:00:00

Oracle: Security Advisory (ELSA-2013-0621-1)

2015-10-06 00:00:00

vmware

VMware vSphere, ESX and ESXi updates to third party libraries

2013-07-31 00:00:00

K15637 : GnuTLS vulnerability CVE-2013-2116

2014-10-16 00:00:00

SOL15637 - GnuTLS vulnerability CVE-2013-2116

2014-10-06 00:00:00

centos

kernel security update

2013-03-12 05:51:58

openssl security update

2013-03-04 22:46:45

libxml2 security update

2013-03-01 00:45:13

prion

Design/Logic Flaw

2013-07-03 18:55:00

Design/Logic Flaw

2013-04-25 23:55:00

Security feature bypass

2013-02-18 04:41:00

cve

CVE-2013-2116

2013-07-03 18:55:00

CVE-2013-0338

2013-04-25 23:55:00

CVE-2013-0268

2013-02-18 04:41:00

redhat

(RHSA-2013:0621) Important: kernel security update

2013-03-11 00:00:00

(RHSA-2013:0636) Important: rhev-hypervisor6 security and bug fix update

2013-03-13 00:00:00

(RHSA-2013:0783) Moderate: openssl security update

2013-05-01 17:58:17

oraclelinux

kernel security update

2013-03-11 00:00:00

kernel security and bug fix update

2013-03-12 00:00:00

ubuntucve

CVE-2013-2116

2013-05-29 00:00:00

CVE-2013-0338

2013-02-26 00:00:00

CVE-2013-0268

2013-02-17 00:00:00

altlinux

Security fix for the ALT Linux 9 package openssl10 version 1.0.0k-alt1

2013-02-27 00:00:00

Security fix for the ALT Linux 9 package openssl1.1 version 1.0.0k-alt1

2013-02-27 00:00:00

Security fix for the ALT Linux 6 package openssl10 version 1.0.0k-alt1

2013-02-27 00:00:00

freebsd

FreeBSD -- OpenSSL multiple vulnerabilities

2013-04-02 00:00:00

OpenSSL -- TLS 1.1, 1.2 denial of service

2013-02-05 00:00:00

fedora

[SECURITY] Fedora 18 Update: openssl-1.0.1e-3.fc18

2013-03-02 19:55:52

[SECURITY] Fedora 17 Update: openssl-1.0.0k-1.fc17

2013-03-08 00:02:36

[SECURITY] Fedora 18 Update: gnutls-2.12.23-2.fc18

2013-06-11 09:08:17

debian

[SECURITY] [DSA 2621-1] openssl security update

2013-02-13 20:07:41

[SECURITY] [DSA 2697-1] gnutls26 security update

2013-05-29 19:59:26

aix

Multiple OpenSSL vulnerabilities

2013-03-15 03:20:11

freebsd_advisory

FreeBSD-SA-13:03.openssl

2013-04-02 00:00:00

osv

openssl - several vulnerabilities

2013-02-13 00:00:00

ibm

Security Bulletin: IBM Smart Analytics System 1050, 2050, and 5600 and IBM InfoSphere Balanced Warehouse C3000, C4000, and D5100 are affected by vulnerabilities in OpenSSL (CVE-2013-0166, CVE-2013-0169)

2022-09-25 23:13:40

Security Bulletin: IBM Tivoli Network Manager - GSKit Security Vulnerabilities (CVE-2013-0169), (CVE-2012-2190) and (CVE-2013-0166)

2018-06-17 14:37:51

Security Bulletin: Tivoli Management Framework affected by vulnerabilities in OpenSSL 1.0.1c

2022-09-25 21:06:56

amazon

Medium: openssl

2013-03-14 22:04:00

Medium: libxml2

2013-05-13 10:28:00

slackware

openssl

2013-02-09 15:03:57

ubuntu

OpenSSL vulnerabilities

2013-02-21 00:00:00

libxml2 vulnerability

2013-03-28 00:00:00

GnuTLS vulnerability

2013-05-29 00:00:00

securityvulns

gnutls DoS

2013-06-03 00:00:00

[ MDVSA-2013:171 ] gnutls

2013-06-03 00:00:00

[ MDVSA-2013:017 ] libxml2

2013-03-11 00:00:00

veracode

Denial Of Service (DoS)

2019-01-15 08:58:46

Denial Of Service (DoS)

2019-01-15 08:54:18

Authorization Bypass

2019-05-02 04:54:03

checkpoint_advisories

GnuTLS TLS Record Decoding Out-of-bounds Memory Access (CVE-2013-2116)

2013-08-25 00:00:00

suse

Security update for GnuTLS (important)

2013-06-20 22:04:17

Security update for GnuTLS (important)

2013-07-04 22:04:13

Security update for Linux kernel (important)

2013-02-25 16:04:22

debiancve

CVE-2013-0338

2013-04-25 23:55:00

CVE-2013-0268

2013-02-18 04:41:00

zdt

Linux Kernel MSR Driver Privilege Escalation Vulnerability

2013-08-05 00:00:00

Linux Kernel 'MSR' Driver Local Privilege Escalation

2013-08-03 00:00:00

packetstorm

Linux Kernel MSR Driver Privilege Escalation

2013-08-04 00:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.862 High

EPSS

Percentile

98.5%

JSON

Related for VMSA-2013-0009.3