Security News -  Security Reviews -   Exploits -  Tools -  UNIX Focus -  Windows Focus
SecuriTeam™  Beyond Security®  SecuriTeam™ Home  Ask the Team  Mailing Lists  Advertising Info  Blogs SecuriTeam™ in Your Inbox   E-mail this CVE-2010-0686 to a friend New vulnerability? New tool? Tell us	CVE-2010-0686 VMware WebAccess URL Forwarding Vulnerability     Credit: The original article can be found at: http://www.securityfocus.com/bid/39103/discuss Website Security Scan Code Vulnerability Test Network Assessment Tool Detect hidden vulnerabilities Exhaustive automated testing Real-time, continuous security Get guidance from professionals of internal or 3rd party code. scanning for your entire network    CVE-2010-0686 Details Check for CVE-2010-0686 Vulnerability Assessment and Management. Automated Pen Testing for 50 to 50,000 nodes beyondsecurity.com/vulnerability-scanner Vulnerable Systems:  * VMWare VirtualCenter 2.0.2  * VMWare VirtualCenter 2.5 Update 6  * VMWare VirtualCenter 2.5 Update 5  * VMWare VirtualCenter 2.5 Update 2  * VMWare VirtualCenter 2.5 Update 1  * VMWare VirtualCenter 2.5  * VMWare VirtualCenter 2.0.2 Update 5  * VMWare VirtualCenter 2.0.2 Update 4  * VMWare VirtualCenter 2.0.2 Update 3  * VMWare VirtualCenter 2.0.2 Update 2  * VMWare VirtualCenter 2.0.2 Update 1  * VMWare Server 2.0.2 Build 203138  * VMWare Server 2.0.2  * VMWare Server 2.0.1 build 156745  * VMWare Server 2.0.1  * VMWare Server 2.0  * VMWare ESX Server 3.0.3 ESX303-200910401-BG  * VMWare ESX Server 3.0.3 ESX303-200905401-SG  * VMWare ESX Server 3.0.3 ESX303-200812406-BG  * VMWare ESX Server 3.0.3  * VMWare ESX Server 3.5 ESX350-201003403  * VMWare ESX Server 3.5 ESX350-200910401  * VMWare ESX Server 3.5 ESX350-200906407  * VMWare ESX Server 3.5 ESX350-200904401  * VMWare ESX Server 3.5 An attacker may forward web requests through the application by sending a specially crafted request to the computer or by enticing a user into following malicious URI. This may facilitate attacks against users, allow bypass of security restrictions, and aid in carrying out other attacks. Vendor Status: VMware had issued an update for this vulnerability Patch Availability: http://www.vmware.com/security/advisories/VMSA-2010-0005.html CVE Information: CVE-2010-0686  Comments on CVE-2010-0686:  Add new comment:  Subject:  Name/Nick/Email:          Chars Left:	All Sections Security News Unix focus Exploits Tools Windows focus Security Reviews
	Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus

Copyright © 1998-2010 Beyond Security® All rights reserved.
Terms of Use Site Privacy Statement.
SecuriTeam™ is a trademark of Beyond Security®