Detections
Analytics

VMware vCenter Server Appliance 6.5 < 6.5 U1 Multiple Vulnerabilities (VMSA-2017-0013)

high Nessus Plugin ID 102084

Language:

Synopsis

A virtualization appliance installed on the remote host is affected by multiple vulnerabilities.

Description

The version of VMware vCenter Server Appliance installed on the remote host is 6.5 prior to 6.5 Update 1 (6.5 U1). It is, therefore, affected by multiple vulnerabilities :

 - An insecure library loading issue exists due to the use of the LD_LIBRARY_PATH variable to look for specific files or libraries that include the current working directory, which may not be trusted or under user control. An unauthenticated, remote attacker can exploit this, by placing a specially crafted library in the path before the installer is run, to inject and execute arbitrary code in the context of the current user.
 (CVE-2017-4921)

 - An information disclosure vulnerability exists in the service startup script due to the use of insecure world writable directories for temporary storage of critical information. A local attacker can exploit this to disclose sensitive information. (CVE-2017-4922)

 - An information disclosure vulnerability exists in the file-based backup feature due to the storage of sensitive information in plaintext. An unauthenticated, remote attacker can exploit this to disclose credentials.(CVE-2017-4923)

Solution

Upgrade to VMware vCenter Server Appliance 6.5 Update 1 (6.5 U1) or later.

See Also

https://www.vmware.com/security/advisories/VMSA-2017-0013.html

Plugin Details

Severity: High

ID: 102084

File Name: vmware_vcenter_server_appliance_vmsa-2017-0013.nasl

Version: 1.7

Type: local

Family: Misc.

Published: 7/31/2017

Updated: 11/12/2019

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Medium

Base Score: 6.5

Temporal Score: 4.8

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P

CVSS Score Source: CVE-2017-4921

CVSS v3

Risk Factor: High

Base Score: 8.8

Temporal Score: 7.7

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:vmware:vcenter_server_appliance

Required KB Items: Host/VMware vCenter Server Appliance/Version, Host/VMware vCenter Server Appliance/Build

Exploit Ease: No known exploits are available

Patch Publication Date: 7/27/2017

Vulnerability Publication Date: 7/27/2017

Reference Information

CVE: CVE-2017-4921, CVE-2017-4922, CVE-2017-4923

BID: 99997, 100006, 100012

VMSA: 2017-0013