- Home
- CVEs with nessus.description==The remote VMware ESXi 5.0 host is affected by the following
vulnerabilities :
- An off-by-one overflow condition exists in the
xmlXPtrEvalXPtrPart() function due to improper
validation of user-supplied input. An unauthenticated,
remote attacker can exploit this, via a specially
crafted XML file, to cause a denial of service condition
or the execution of arbitrary code. (CVE-2011-3102)
- Multiple integer overflow conditions exist due to
improper validation of user-supplied input when handling
overly long strings. An unauthenticated, remote
attacker can exploit this, via a specially crafted XML
file, to cause a denial of service condition or the
execution of arbitrary code. (CVE-2012-2807)
- A heap-based underflow condition exists in the bundled
libxml2 library due to incorrect parsing of strings not
containing an expected space. A remote attacker can
exploit this, via a specially crafted XML document, to
cause a denial of service condition or the execution of
arbitrary code. (CVE-2012-5134)
- A privilege escalation vulnerability exists due to
improper handling of control code in the lgtosync.sys
driver. A local attacker can exploit this escalate
privileges on Windows-based 32-bit guest operating
systems. (CVE-2013-3519)
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top