Summary
VMware has updated the userworld OpenSSL library in vCenter Server to address multiple security vulnerabilities.
Solution
Apply the missing patch(es).
Insight
The userworld OpenSSL library is updated to version openssl-0.9.8y to resolve multiple security issues.
Affected
VMware vCenter Server before 5.0 update 3
Detection
Check the build number.
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2013-0166, CVE-2013-0169 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities
- Apple Safari 'Webkit' Multiple Vulnerabilities -01 Feb15 (Mac OS X)
- Adobe Reader Information Disclosure & Code Execution Vulnerabilities (Linux)
- Adobe Products Unspecified Cross-Site Scripting Vulnerability June-2011 (Windows)
- Apple Safari 'setInterval()' Address Bar Spoofing Vulnerability (Win)
- Brother HL-5370DW Printer 'post/panel.html' Security Bypass Vulnerability