Directory Traversal Vulnerability in VMware ESXi and ESX Products
CVE-2008-4281

Currently unrated

Key Information:

Vendor: Vmware
Status: Esxi; Esx
Vendor: CVE Published:; 10 November 2008

Summary

A directory traversal vulnerability exists in VMware ESXi 3.5 and ESX 3.5, allowing administrators with the Datastore.FileManagement privilege to exploit the system through unknown vectors. This issue could expose sensitive information or allow unauthorized access to internal files, necessitating immediate attention and patching to mitigate potential risks.

References

http://lists.vmware.com/pipermail/security-announce/2008/...

mailing-listx_refsource_MLIST

http://www.securityfocus.com/bid/32172

vdb-entryx_refsource_BID

http://www.securityfocus.com/archive/1/498138/100/0/threaded

mailing-listx_refsource_BUGTRAQ

Timeline

Vulnerability published
Nov 10, 2008
Vulnerability Reserved
Sep 26, 2008