CVE-2013-5973

Currently unrated

Key Information:

Vendor: Vmware
Status: Esx
Vendor: CVE Published:; 23 December 2013

Summary

VMware ESXi 4.0 through 5.5 and ESX 4.0 and 4.1 allow local users to read or modify arbitrary files by leveraging the Virtual Machine Power User or Resource Pool Administrator role for a vCenter Server Add Existing Disk action with a (1) -flat, (2) -rdm, or (3) -rdmp filename.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/89938

vdb-entryx_refsource_XF

http://www.securityfocus.com/archive/1/530482/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://osvdb.org/101387

vdb-entryx_refsource_OSVDB

Timeline

Vulnerability published
Dec 23, 2013
Vulnerability Reserved
Oct 1, 2013