Computer Security
[EN] no-pyccku

VMware vSphere multiple security vulnerabilities
SecurityVulns ID:13502
Threat Level:
Description:DoS, privilege escalation.
Affected:VMWARE : ESX 4.1
 VMWARE : vCenter Server 5.0
 VMWARE : ESXi 5.0
CVE:CVE-2013-5971 (Session fixation vulnerability in the vSphere Web Client Server in VMware vCenter Server 5.0 before Update 3 allows remote attackers to hijack web sessions and gain privileges via unspecified vectors.)
 CVE-2013-5970 (hostd-vmdb in VMware ESXi 4.0 through 5.0 and ESX 4.0 through 4.1 allows remote attackers to cause a denial of service (hostd-vmdb service outage) by modifying management traffic.)
Original documentdocumentVMWARE, NEW VMSA-2013-0012 VMware vSphere updates address multiple vulnerabilities (08.01.2014)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod