ESXi 5.1 < Build 1312873 File Descriptors Privilege Escalation (remote check)

This script is (C) 2013-2015 Tenable Network Security, Inc.

Synopsis :

The remote VMware ESXi 5.1 host is affected by a privilege escalation

Description :

The remote VMware ESXi 5.1 host is affected by an error in the
handling of certain Virtual Machine file descriptors. This could allow
an unprivileged user with the 'Add Existing Disk' privilege to obtain
read and write access to arbitrary files, possibly leading to
arbitrary code execution after a host reboot.

See also :

Solution :

Apply patch ESXi510-201310101-SG.

Risk factor :

Medium / CVSS Base Score : 4.4
CVSS Temporal Score : 3.8
Public Exploit Available : false

Family: Misc.

Nessus Plugin ID: 71773 ()

Bugtraq ID: 64491

CVE ID: CVE-2013-5973

Ready to Scan Unlimited IPs & Run Compliance Checks?

Upgrade to Nessus Professional today!

Buy Now

Combine the Power of Nessus with the Ease of Cloud

Start your free Nessus Cloud trial now!

Begin Free Trial