Описание
The Update Installer in VMware ESXi 4.1, when a modified sfcb.cfg is present, does not properly configure the SFCB authentication mode, which allows remote attackers to obtain access via an arbitrary username and password.
The Update Installer in VMware ESXi 4.1, when a modified sfcb.cfg is present, does not properly configure the SFCB authentication mode, which allows remote attackers to obtain access via an arbitrary username and password.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2010-4573
- http://kb.vmware.com/kb/1031761
- http://lists.vmware.com/pipermail/security-announce/2010/000114.html
- http://secunia.com/advisories/42591
- http://securitytracker.com/id?1024917
- http://www.securityfocus.com/archive/1/515420/100/0/threaded
- http://www.securityfocus.com/bid/45543
- http://www.vmware.com/security/advisories/VMSA-2010-0020.html
- http://www.vupen.com/english/advisories/2010/3303
Связанные уязвимости
nvd
около 15 лет назад
The Update Installer in VMware ESXi 4.1, when a modified sfcb.cfg is present, does not properly configure the SFCB authentication mode, which allows remote attackers to obtain access via an arbitrary username and password.