OpenPegasus Management Server PAM Authentication 'cimservera.cpp' Buffer Overflow Vulnerability

Bugtraq ID: 27188
Class: Boundary Condition Error
CVE: CVE-2007-5360
Remote: Yes
Local: No
Published: Jan 08 2008 12:00AM
Updated: Feb 12 2009 03:58PM
Credit: Roger Kumpf discovered this issue.
Vulnerable: VMWare ESX Server 3.0.2
VMWare ESX Server 3.0.1
VMWare ESX Server 2.5.5 patch 2
VMWare ESX Server 2.5.4 Patch 5
VMWare ESX Server 2.5.4 Patch 3
VMWare ESX Server 2.5.4 patch 13
VMWare ESX Server 2.5.4 Patch 10
VMWare ESX Server 2.5.4 Patch 1
VMWare ESX Server 2.5.4
VMWare ESX Server 2.5.3 Patch 8
VMWare ESX Server 2.5.3 Patch 7
VMWare ESX Server 2.5.3 Patch 6
VMWare ESX Server 2.5.3 Patch 5
VMWare ESX Server 2.5.3 Patch 4
VMWare ESX Server 2.5.3 Patch 13
VMWare ESX Server 2.5.3
VMWare ESX Server 2.5.2
VMWare ESX Server 2.5
VMWare ESX Server 2.5.3 Patch 2
VMWare ESX Server 2.5.2 Patch 4
SuSE SUSE Linux Enterprise SDK 10
SuSE SUSE Linux Enterprise SDK 10
OpenPegasus OpenPegasus 2.6.1
HP WBEM A.02.07
+ HP HP-UX B.11.31
+ HP HP-UX B.11.23
HP WBEM A.02.05.08
+ HP HP-UX 11.23
+ HP HP-UX 11.23
+ HP HP-UX 11.23
+ HP HP-UX 11.23
+ HP HP-UX 11.11
+ HP HP-UX 11.11
+ HP HP-UX 11.11
+ HP HP-UX 11.11
+ HP HP-UX 11.0
+ HP HP-UX 11.0
+ HP HP-UX 11.0
+ HP HP-UX 11.0
+ HP HP-UX B.11.31
+ HP HP-UX B.11.31
+ HP HP-UX B.11.31
HP HP-UX B.11.31
HP HP-UX B.11.31
HP HP-UX B.11.23
HP HP-UX B.11.11
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus