Computer Security
[EN] securityvulns.ru no-pyccku


VMWare vCSA/ESXi multiple security vulnerabilities
Published:02.01.2013
Source:
SecurityVulns ID:12800
Type:remote
Threat Level:
5/10
Description:Directory traversal, information leakage.
Affected:VMWARE : ESXi 4.1
 VMWARE : ESXi 4.0
 VMWARE : ESXi 5.0
 VMWARE : ESXi 3.5
 VMWARE : vCenter Server Appliance 5.0
 VMWARE : vCenter Server Appliance 5.1
 VMWARE : ESXi 5.1
CVE:CVE-2012-6325 (VMware vCenter Server Appliance (vCSA) 5.0 before Update 2 does not properly parse XML documents, which allows remote authenticated users to read arbitrary files via unspecified vectors.)
 CVE-2012-6324 (Directory traversal vulnerability in VMware vCenter Server Appliance (vCSA) 5.0 before Update 2 and 5.1 before Patch 1 allows remote authenticated users to read arbitrary files via unspecified vectors.)
Original documentdocumentVMWARE, VMSA-2012-0018 VMware security updates for vCSA and ESXi (02.01.2013)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod