Vulnerability Description
Unspecified vulnerability in the Management Interface in VMware ESX Server 2.x up to 2.5.x before 24 December 2005 allows "remote code execution in the Web browser" via unspecified attack vectors, probably related to cross-site scripting (XSS).
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Vmware | Esx | 2.0 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/18250PatchVendor Advisory
- http://securitytracker.com/id?1015422ExploitPatch
- http://www.osvdb.org/22119Patch
- http://www.securityfocus.com/bid/16086Patch
- http://www.vmware.com/support/kb/enduser/std_adp.php?p_faqid=2001Patch
- http://www.vupen.com/english/advisories/2005/3084Vendor Advisory
- http://secunia.com/advisories/18250PatchVendor Advisory
- http://securitytracker.com/id?1015422ExploitPatch
- http://www.osvdb.org/22119Patch
- http://www.securityfocus.com/bid/16086Patch
- http://www.vmware.com/support/kb/enduser/std_adp.php?p_faqid=2001Patch
- http://www.vupen.com/english/advisories/2005/3084Vendor Advisory
FAQ
What is CVE-2005-4583?
CVE-2005-4583 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Unspecified vulnerability in the Management Interface in VMware ESX Server 2.x up to 2.5.x before 24 December 2005 allows "remote code execution in the Web browser" via unspecified attack vectors, pro...
How severe is CVE-2005-4583?
CVE-2005-4583 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-4583?
Check the references section above for vendor advisories and patch information. Affected products include: Vmware Esx.