SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

Download | Alert*

CVE

CVE-2008-4281

Directory traversal vulnerability in VMWare ESXi 3.5 before ESXe350-200810401-O-UG and ESX 3.5 before ESX350-200810201-UG allows administrators with the Datastore.FileManagement privilege to gain privileges via unknown vectors.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 9.3
Exploit Score: 8.6
Impact Score: 10.0

CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE

Reference:

SECTRACK-1021155

http://www.securityfocus.com/archive/1/498138/100/0/threaded

BID-32172

SECUNIA-32624

ADV-2008-3052

http://lists.vmware.com/pipermail/security-announce/2008/000042.html

http://www.vmware.com/security/advisories/VMSA-2008-0018.html

oval:org.mitre.oval:def:6425

vmware-virtualcenter-directory-traversal(46418)


30430



423868



247768



909



194555



282