Summary
VMware has updated the userworld OpenSSL library in vCenter Server to address multiple security vulnerabilities.
Solution
Apply the missing patch(es).
Insight
The userworld OpenSSL library is updated to version openssl-0.9.8y to resolve multiple security issues.
Affected
VMware vCenter Server before 5.0 update 3
Detection
Check the build number.
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2013-0166, CVE-2013-0169 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities
- Apache Error Log Escape Sequence Injection
- Apache Tomcat Multiple Vulnerabilities-01 (Nov14)
- Adobe LiveCycle Designer Untrusted Search Path Vulnerability (Windows)
- Adobe Reader Privelege Escalation Vulnerability - Jul07 (Mac OS X)
- Apple Safari Multiple Memory Corruption Vulnerabilities-02 Apr14 (Mac OS X)