Unspecified vulnerability in the Management Interface in VMware ESX Server 2.x up to 2.5.x before 24 December 2005 allows "remote code execution in the Web browser" via unspecified attack vectors, probably related to cross-site scripting (XSS).
References
Link | Resource |
---|---|
http://secunia.com/advisories/18250 | Patch Vendor Advisory |
http://securitytracker.com/id?1015422 | Exploit Patch |
http://www.osvdb.org/22119 | Patch |
http://www.securityfocus.com/bid/16086 | Patch |
http://www.vmware.com/support/kb/enduser/std_adp.php?p_faqid=2001 | Patch |
http://www.vupen.com/english/advisories/2005/3084 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2005-12-29 11:03
Updated : 2024-02-28 10:42
NVD link : CVE-2005-4583
Mitre link : CVE-2005-4583
CVE.ORG link : CVE-2005-4583
JSON object : View
Products Affected
vmware
- esx
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')