Vulnerability Details CVE-2005-4583
Unspecified vulnerability in the Management Interface in VMware ESX Server 2.x up to 2.5.x before 24 December 2005 allows "remote code execution in the Web browser" via unspecified attack vectors, probably related to cross-site scripting (XSS).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.01
EPSS Ranking 76.3%
CVSS Severity
CVSS v2 Score 4.3
References
- http://secunia.com/advisories/18250
- http://securitytracker.com/id?1015422
- http://www.osvdb.org/22119
- http://www.securityfocus.com/bid/16086
- http://www.vmware.com/support/kb/enduser/std_adp.php?p_faqid=2001
- http://www.vupen.com/english/advisories/2005/3084
- http://secunia.com/advisories/18250
- http://securitytracker.com/id?1015422
- http://www.osvdb.org/22119
- http://www.securityfocus.com/bid/16086
- http://www.vmware.com/support/kb/enduser/std_adp.php?p_faqid=2001
- http://www.vupen.com/english/advisories/2005/3084
Products affected by CVE-2005-4583
-
cpe:2.3:o:vmware:esx:2.0
-
cpe:2.3:o:vmware:esx:2.0.1
-
cpe:2.3:o:vmware:esx:2.1.1
-
cpe:2.3:o:vmware:esx:2.1.2
-
cpe:2.3:o:vmware:esx:2.5
-
cpe:2.3:o:vmware:esx:2.5.2