VMware vCenter 5.5 LDAP Certificate Validation MitM Spoofing (VMSA-2015-0006)

Medium Nessus Plugin ID 86124


The remote host has a virtualization management application installed that is affected by a man-in-the-middle spoofing vulnerability.


The VMware vCenter Server installed on the remote host is version 5.5 prior to 5.5u3. It is, therefore, affected by a man-in-the-middle spoofing vulnerability due to improper validation of X.509 certificates from TLS LDAP servers. A remote, man-in-the-middle attacker can exploit this to intercept network traffic by spoofing a TLS server via a crafted certificate, resulting in the manipulation or disclosure of sensitive information.


Upgrade to VMware vCenter Server 5.5u3 (5.5.0 build-3000241) or later.

See Also


Plugin Details

Severity: Medium

ID: 86124

File Name: vmware_vcenter_vmsa-2015-0006_55.nasl

Version: $Revision: 1.9 $

Type: remote

Family: Misc.

Published: 2015/09/24

Modified: 2016/08/16

Dependencies: 63061

Risk Information

Risk Factor: Medium


Base Score: 5.8

Temporal Score: 4.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:N

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:vmware:vcenter_server

Required KB Items: Host/VMware/vCenter, Host/VMware/version, Host/VMware/release

Exploit Available: false

Exploit Ease: No known exploits are available

Patch Publication Date: 2015/09/16

Vulnerability Publication Date: 2015/09/16

Reference Information

CVE: CVE-2015-6932

OSVDB: 127696

VMSA: 2015-0006

IAVB: 2015-B-0117