The Update Installer in VMware ESXi 4.1, when a modified sfcb.cfg is present, does not properly configure the SFCB authentication mode, which allows remote malicious users to obtain access via an arbitrary username and password.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
vmware esxi 4.1 |