ID CVE-2014-1207
Summary VMware ESXi 4.0 through 5.1 and ESX 4.0 and 4.1 allow remote attackers to cause a denial of service (NULL pointer dereference) by intercepting and modifying Network File Copy (NFC) traffic. Per: http://cwe.mitre.org/data/definitions/476.html "CWE-476: NULL Pointer Dereference"
References
Vulnerable Configurations
  • cpe:2.3:o:vmware:esxi:4.0:*:*:*:*:*:*:*
    cpe:2.3:o:vmware:esxi:4.0:*:*:*:*:*:*:*
  • cpe:2.3:o:vmware:esxi:4.0:1:*:*:*:*:*:*
    cpe:2.3:o:vmware:esxi:4.0:1:*:*:*:*:*:*
  • cpe:2.3:o:vmware:esxi:4.0:2:*:*:*:*:*:*
    cpe:2.3:o:vmware:esxi:4.0:2:*:*:*:*:*:*
  • cpe:2.3:o:vmware:esxi:4.0:3:*:*:*:*:*:*
    cpe:2.3:o:vmware:esxi:4.0:3:*:*:*:*:*:*
  • cpe:2.3:o:vmware:esxi:4.0:4:*:*:*:*:*:*
    cpe:2.3:o:vmware:esxi:4.0:4:*:*:*:*:*:*
  • cpe:2.3:o:vmware:esxi:4.1:*:*:*:*:*:*:*
    cpe:2.3:o:vmware:esxi:4.1:*:*:*:*:*:*:*
  • cpe:2.3:o:vmware:esxi:4.1:1:*:*:*:*:*:*
    cpe:2.3:o:vmware:esxi:4.1:1:*:*:*:*:*:*
  • cpe:2.3:o:vmware:esxi:4.1:2:*:*:*:*:*:*
    cpe:2.3:o:vmware:esxi:4.1:2:*:*:*:*:*:*
  • cpe:2.3:o:vmware:esxi:5.0:*:*:*:*:*:*:*
    cpe:2.3:o:vmware:esxi:5.0:*:*:*:*:*:*:*
  • cpe:2.3:o:vmware:esxi:5.0:1:*:*:*:*:*:*
    cpe:2.3:o:vmware:esxi:5.0:1:*:*:*:*:*:*
  • cpe:2.3:o:vmware:esxi:5.0:2:*:*:*:*:*:*
    cpe:2.3:o:vmware:esxi:5.0:2:*:*:*:*:*:*
  • cpe:2.3:o:vmware:esxi:5.1:*:*:*:*:*:*:*
    cpe:2.3:o:vmware:esxi:5.1:*:*:*:*:*:*:*
  • cpe:2.3:o:vmware:esx:4.0:*:*:*:*:*:*:*
    cpe:2.3:o:vmware:esx:4.0:*:*:*:*:*:*:*
  • cpe:2.3:o:vmware:esx:4.1:*:*:*:*:*:*:*
    cpe:2.3:o:vmware:esx:4.1:*:*:*:*:*:*:*
CVSS
Base: 4.3 (as of 29-08-2017 - 01:34)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:N/AC:M/Au:N/C:N/I:N/A:P
refmap via4
bid 64995
confirm http://www.vmware.com/security/advisories/VMSA-2014-0001.html
osvdb 102196
sectrack 1029643
secunia 56499
xf vmware-esx-cve20141207-dos(90559)
Last major update 29-08-2017 - 01:34
Published 17-01-2014 - 21:55
Last modified 29-08-2017 - 01:34
Back to Top