RETIRED: VMware WebAccess Multiple Vulnerabilities

Bugtraq ID:	39037
Class:	Input Validation Error
CVE:	CVE-2009-2277 CVE-2010-1137 CVE-2010-0686 CVE-2010-1193
Remote:	Yes
Local:	No
Published:	Mar 29 2010 12:00AM
Updated:	Apr 01 2010 06:42PM
Credit:	VMware
Vulnerable:	VMWare VirtualCenter 2.0.2 VMWare VirtualCenter 2.5 Update 5 VMWare VirtualCenter 2.5 Update 2 VMWare VirtualCenter 2.5 Update 1 VMWare VirtualCenter 2.5 VMWare VirtualCenter 2.0.2 Update 5 VMWare VirtualCenter 2.0.2 Update 4 VMWare VirtualCenter 2.0.2 Update 3 VMWare VirtualCenter 2.0.2 Update 2 VMWare VirtualCenter 2.0.2 Update 1 VMWare Server 2.0.2 Build 203138 VMWare Server 2.0.2 VMWare Server 1.0.10 Build 203137 VMWare Server 1.0.10 VMWare ESX Server 3.0.3 ESX303-200910401-BG VMWare ESX Server 3.0.3 ESX303-200905401-SG VMWare ESX Server 3.0.3 ESX303-200812406-BG VMWare ESX Server 3.0.3 VMWare ESX Server 3.5 ESX350-200910401 VMWare ESX Server 3.5 ESX350-200906407 VMWare ESX Server 3.5 ESX350-200904401 VMWare ESX Server 3.5
Not Vulnerable:	VMWare VirtualCenter 2.5 Update 6 VMWare ESX Server 3.5 ESX350-201003403

RETIRED: VMware WebAccess Multiple Vulnerabilities

VMware WebAccess is prone to multiple vulnerabilities because it fails to sufficiently sanitize user-supplied data. The issues include cross-site scripting vulnerabilities and a URL forwarding vulnerability.

This BID is being retired; the following individual records now document these issues:

39106 VMware WebAccess '/ui/vmDirect.do' Information Disclosure Vulnerability
39105 VMware WebAccess JSON Cross-site Scripting Vulnerabliity
39104 VMware WebAccess Virtual Machine Name Cross-site Scripting Vulnerability
39103 VMware WebAccess URL Forwarding Vulnerability

RETIRED: VMware WebAccess Multiple Vulnerabilities

To exploit the cross-site scripting issues, an attacker must entice an unsuspecting victim to follow a malicious URI. The attacker may use readily available tools to send a request to the application to carry out the URL forwarding attack or they may carry out this attack through a WebAccess user.

RETIRED: VMware WebAccess Multiple Vulnerabilities

Solution:
Vendor updates are available. Please see the references for more information.


VMWare ESX Server 3.5 ESX350-200906407

• VMWare ESX350-201003403-SG
  http://download3.vmware.com/software/vi/ESX350-201003403-SG.zip

VMWare VirtualCenter 2.0.2 Update 4

• VMWare VMware Virtual Center 2.5 Update 6
  http://downloads.vmware.com/download/download.do?downloadGroup=VC250U6

VMWare VirtualCenter 2.5

• VMWare VMware Virtual Center 2.5 Update 6
  http://downloads.vmware.com/download/download.do?downloadGroup=VC250U6

VMWare VirtualCenter 2.0.2 Update 1

• VMWare VMware Virtual Center 2.5 Update 6
  http://downloads.vmware.com/download/download.do?downloadGroup=VC250U6

VMWare ESX Server 3.5 ESX350-200910401

• VMWare ESX350-201003403-SG
  http://download3.vmware.com/software/vi/ESX350-201003403-SG.zip

VMWare VirtualCenter 2.0.2 Update 3

• VMWare VMware Virtual Center 2.5 Update 6
  http://downloads.vmware.com/download/download.do?downloadGroup=VC250U6

VMWare VirtualCenter 2.5 Update 1

• VMWare VMware Virtual Center 2.5 Update 6
  http://downloads.vmware.com/download/download.do?downloadGroup=VC250U6

VMWare ESX Server 3.5 ESX350-200904401

• VMWare ESX350-201003403-SG
  http://download3.vmware.com/software/vi/ESX350-201003403-SG.zip

VMWare VirtualCenter 2.0.2 Update 5

• VMWare VMware Virtual Center 2.5 Update 6
  http://downloads.vmware.com/download/download.do?downloadGroup=VC250U6

VMWare VirtualCenter 2.5 Update 5

• VMWare VMware Virtual Center 2.5 Update 6
  http://downloads.vmware.com/download/download.do?downloadGroup=VC250U6

VMWare VirtualCenter 2.0.2 Update 2

• VMWare VMware Virtual Center 2.5 Update 6
  http://downloads.vmware.com/download/download.do?downloadGroup=VC250U6

VMWare ESX Server 3.5

• VMWare ESX350-201003403-SG
  http://download3.vmware.com/software/vi/ESX350-201003403-SG.zip

VMWare VirtualCenter 2.5 Update 2

• VMWare VMware Virtual Center 2.5 Update 6
  http://downloads.vmware.com/download/download.do?downloadGroup=VC250U6

VMWare VirtualCenter 2.0.2

• VMWare VMware Virtual Center 2.5 Update 6
  http://downloads.vmware.com/download/download.do?downloadGroup=VC250U6

VMWare ESX Server 3.0.3 ESX303-200812406-BG

• VMWare ESX350-201003403-SG
  http://download3.vmware.com/software/vi/ESX350-201003403-SG.zip

VMWare ESX Server 3.0.3 ESX303-200910401-BG

• VMWare ESX350-201003403-SG
  http://download3.vmware.com/software/vi/ESX350-201003403-SG.zip

VMWare ESX Server 3.0.3

• VMWare ESX350-201003403-SG
  http://download3.vmware.com/software/vi/ESX350-201003403-SG.zip

VMWare ESX Server 3.0.3 ESX303-200905401-SG

• VMWare ESX350-201003403-SG
  http://download3.vmware.com/software/vi/ESX350-201003403-SG.zip

RETIRED: VMware WebAccess Multiple Vulnerabilities

References:

• VMware Homepage (VMware)