Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4
CVSSv2

CVE-2006-5990

Published: 21/11/2006 Updated: 17/10/2018
CVSS v2 Base Score: 4 | Impact Score: 4.9 | Exploitability Score: 4.9
VMScore: 356
Vector: AV:N/AC:H/Au:N/C:N/I:P/A:P
Subscribe to Virtualcenter

Vulnerability Summary

VMWare VirtualCenter client 2.x prior to 2.0.1 Patch 1 (Build 33643) and 1.4.x prior to 1.4.1 Patch 1 (Build 33425), when server certificate verification is enabled, does not verify the server's X.509 certificate when creating an SSL session, which allows remote malicious servers to spoof valid servers via a man-in-the-middle attack.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

vmware virtualcenter 1.4.1

vmware virtualcenter 2.0.1

References

CWE-20http://www.vmware.com/download/vi/vc-201-200611-patch.htmlhttp://kb.vmware.com/kb/4646606http://www.securityfocus.com/bid/21231http://securitytracker.com/id?1017270http://secunia.com/advisories/23053http://www.vupen.com/english/advisories/2006/4655https://exchange.xforce.ibmcloud.com/vulnerabilities/30477http://www.securityfocus.com/archive/1/452275/100/0/threadedhttps://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4946CVE-2024-30309CVE-2024-4761CVE-2024-30051type confusionmemory leakCVE-2024-30293reflected XSSCVE-2024-3126
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook