This script is Copyright (C) 2013-2014 Tenable Network Security, Inc.
The remote host has a virtualization management application installed
that is affected by multiple vulnerabilities.
The version of VMware vCenter installed on the remote host is 5.1 prior
to update 1. It therefore is potentially affected by the following
- When deployed in an environment that uses Active
Directory with anonymous LDAP binding enabled, VMware
vCenter doesn't properly handle login credentials.
- The bundled version of Oracle JRE is earlier than
1.6.0_37 and thus, is affected by multiple security
- The bundled version of Apache Tomcat is affected by
multiple issues. (CVE-2012-2733, CVE-2012-4534)
See also :
Upgrade to VMware vCenter 5.1 update 1 or later.
Risk factor :
Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 8.7
Public Exploit Available : true