Search Results (Refine Search)

Search Parameters:
  • Results Type: Overview
  • Keyword (text search): cpe:2.3:a:vmware:vcenter_server:4.1:update_1:*:*:*:*:*:*
There are 3 matching records.
Displaying matches 1 through 3.
Vuln ID Summary CVSS Severity

Session fixation vulnerability in the vSphere Web Client Server in VMware vCenter Server 5.0 before Update 3 allows remote attackers to hijack web sessions and gain privileges via unspecified vectors.

Published: October 21, 2013; 6:54:30 AM -0400
V3.x:(not available)
V2.0: 6.8 MEDIUM

VMware vCenter Server 4.1 before Update 3 and 5.0 before Update 2, and vCSA 5.0 before Update 2, allows remote attackers to cause a denial of service (disk consumption) via vectors that trigger large log entries.

Published: February 22, 2013; 3:55:01 PM -0500
V3.x:(not available)
V2.0: 7.8 HIGH

The vCenter Tomcat Management Application in VMware vCenter Server 4.1 before Update 1 stores log-on credentials in a configuration file, which allows local users to gain privileges by reading this file.

Published: February 15, 2011; 8:00:02 PM -0500
V3.x:(not available)
V2.0: 2.1 LOW