VMware Security Updates for vCenter Server (VMSA-2013-0009)

Summary

VMware has updated the userworld OpenSSL library in vCenter Server to address multiple security vulnerabilities.

Solution

Apply the missing patch(es).

Insight

The userworld OpenSSL library is updated to version openssl-0.9.8y to resolve multiple security issues.

Affected

VMware vCenter Server before 5.0 update 3

Detection

Check the build number.

References

http://www.vmware.com/security/advisories/VMSA-2013-0009.html

Updated on 2015-03-25

Severity

Medium Severity

Classification

CVE CVE-2013-0166, CVE-2013-0169

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities