ID CVE-2008-4914
Summary Unspecified vulnerability in VMware ESXi 3.5 before ESXe350-200901401-I-SG and ESX 3.5 before ESX350-200901401-SG allows local administrators to cause a denial of service (host crash) via a snapshot with a malformed VMDK delta disk.
References
Vulnerable Configurations
  • cpe:2.3:a:vmware:esx:3.5:*:*:*:*:*:*:*
    cpe:2.3:a:vmware:esx:3.5:*:*:*:*:*:*:*
  • cpe:2.3:a:vmware:esxi:3.5:*:*:*:*:*:*:*
    cpe:2.3:a:vmware:esxi:3.5:*:*:*:*:*:*:*
CVSS
Base: 4.7 (as of 29-09-2017 - 01:32)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
LOCAL MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE COMPLETE
cvss-vector via4 AV:L/AC:M/Au:N/C:N/I:N/A:C
oval via4
accepted 2010-05-17T04:00:08.222-04:00
class vulnerability
contributors
  • name Michael Wood
    organization Hewlett-Packard
  • name Michael Wood
    organization Hewlett-Packard
  • name J. Daniel Brown
    organization DTCC
definition_extensions
  • comment VMWare ESX Server 3.0.3 is installed
    oval oval:org.mitre.oval:def:6026
  • comment VMWare ESX Server 3.0.2 is installed
    oval oval:org.mitre.oval:def:5613
  • comment VMware ESX Server 3.5.0 is installed
    oval oval:org.mitre.oval:def:5887
description Unspecified vulnerability in VMware ESXi 3.5 before ESXe350-200901401-I-SG and ESX 3.5 before ESX350-200901401-SG allows local administrators to cause a denial of service (host crash) via a snapshot with a malformed VMDK delta disk.
family unix
id oval:org.mitre.oval:def:5909
status accepted
submitted 2009-09-23T15:39:02.000-04:00
title VMware ESX Server VMDK Delta Disk Processing Lets Local Administrative Users Deny Service
version 5
refmap via4
bid 33549
confirm http://www.vmware.com/security/advisories/VMSA-2009-0001.html
sectrack 1021654
secunia 33776
vupen ADV-2009-0301
Last major update 29-09-2017 - 01:32
Published 03-02-2009 - 19:30
Last modified 29-09-2017 - 01:32
Back to Top