CVE-2012-5703

Sažetak

The vSphere API in VMware ESXi 4.1 and ESX 4.1 allows remote attackers to cause a denial of service (host daemon crash) via an invalid value in a (1) RetrieveProp or (2) RetrievePropEx SOAP request.

Reference

http://www.coresecurity.com/content/vmware-esx-input-validation-error
http://www.securityfocus.com/bid/56571
http://www.securitytracker.com/id?1027782
http://www.vmware.com/security/advisories/VMSA-2012-0016.html

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	PARTIAL

CVSS vektor

AV:N/AC:L/Au:N/C:N/I:N/A:P

Zadnje važnije ažuriranje

12-03-2013 - 03:18

Objavljeno

20-11-2012 - 05:52