ID CVE-2011-1785
Summary VMware ESXi 4.0 and 4.1 and ESX 4.0 and 4.1 allow remote attackers to cause a denial of service (socket exhaustion) via unspecified network traffic.
References
Vulnerable Configurations
  • cpe:2.3:a:vmware:esx:4.0:*:*:*:*:*:*:*
    cpe:2.3:a:vmware:esx:4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:vmware:esx:4.1:*:*:*:*:*:*:*
    cpe:2.3:a:vmware:esx:4.1:*:*:*:*:*:*:*
  • cpe:2.3:a:vmware:esxi:4.0:*:*:*:*:*:*:*
    cpe:2.3:a:vmware:esxi:4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:vmware:esxi:4.1:*:*:*:*:*:*:*
    cpe:2.3:a:vmware:esxi:4.1:*:*:*:*:*:*:*
CVSS
Base: 7.8 (as of 09-10-2018 - 19:32)
Impact:
Exploitability:
CWE CWE-399
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE COMPLETE
cvss-vector via4 AV:N/AC:L/Au:N/C:N/I:N/A:C
oval via4
accepted 2011-12-05T04:00:14.677-05:00
class vulnerability
contributors
name Aslesha Nargolkar
organization Hewlett-Packard
definition_extensions
  • comment VMware ESX Server 4.0 is installed
    oval oval:org.mitre.oval:def:6293
  • comment VMware ESX Server 4.1 is installed
    oval oval:org.mitre.oval:def:13012
description VMware ESXi 4.0 and 4.1 and ESX 4.0 and 4.1 allow remote attackers to cause a denial of service (socket exhaustion) via unspecified network traffic.
family unix
id oval:org.mitre.oval:def:13242
status accepted
submitted 2011-09-06T11:35:29.000-05:00
title Firmware ESXi and ESX Denial of Service and third party updates for Likewise components and ESX Service Console
version 7
refmap via4
bid 47627
bugtraq 20110428 VMSA-2011-0007 VMware ESXi and ESX Denial of Service and third party updates for Likewise components and ESX Service Console
confirm
mlist [security-announce] 20110428 VMSA-2011-0007 VMware ESXi and ESX Denial of Service and third party updates for Likewise components and ESX Service Console
osvdb 72118
sectrack 1025452
sreason 8240
xf vmware-esxserver-socket-dos(67195)
Last major update 09-10-2018 - 19:32
Published 03-05-2011 - 22:55
Last modified 09-10-2018 - 19:32
Back to Top