This script is Copyright (C) 2015 Tenable Network Security, Inc.
The remote VMware ESXi host is affected by a remote code execution
The remote VMware ESXi host is version 5.5 prior to build 3029944. It
is, therefore, affected by a remote code execution vulnerability due
to a double-free error in the SLPDProcessMessage() function in
OpenSLP. An unauthenticated, remote attacker can exploit this, via a
crafted package, to execute arbitrary code or cause a denial of
See also :
Apply patch ESXi550-201509101-SG for ESXi 5.5.
Risk factor :
Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 7.0
Public Exploit Available : false