Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4281

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2008-4281
Last Modified 07 Mar 2011 10:12:12
Published 10 Nov 2008 09:12:55
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-4281

Summary

Directory traversal vulnerability in VMWare ESXi 3.5 before ESXe350-200810401-O-UG and ESX 3.5 before ESX350-200810201-UG allows administrators with the Datastore.FileManagement privilege to gain privileges via unknown vectors.

Vulnerable Systems

Application

  • Vmware Esx 3.5

  • Vmware Esxi 3.5


References

MLIST - [Security-announce] 20081106 VMSA-2008-0018 VMware Hosted products and patches for ESX and ESXi resolve two security issues

XF - vmware-virtualcenter-directory-traversal(46418)

VUPEN - ADV-2008-3052

CONFIRM - http://www.vmware.com/security/advisories/VMSA-2008-0018.html

SECTRACK - 1021155

BID - 32172

BUGTRAQ - 20081107 VMSA-2008-0018 VMware Hosted products and patches for ESX and ESXi resolve two security issues

SECUNIA - 32624


Last Updated: 27 May 2016 10:48:26