VMware WebAccess URL Forwarding Vulnerability
BID:39103
Info
VMware WebAccess URL Forwarding Vulnerability
| Bugtraq ID: | 39103 |
| Class: | Input Validation Error |
| CVE: |
CVE-2010-0686 |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 29 2010 12:00AM |
| Updated: | Jan 05 2011 09:12PM |
| Credit: | VMWare |
| Vulnerable: |
VMWare VirtualCenter 2.0.2 VMWare VirtualCenter 2.5 Update 6 VMWare VirtualCenter 2.5 Update 5 VMWare VirtualCenter 2.5 Update 2 VMWare VirtualCenter 2.5 Update 1 VMWare VirtualCenter 2.5 VMWare VirtualCenter 2.0.2 Update 5 VMWare VirtualCenter 2.0.2 Update 4 VMWare VirtualCenter 2.0.2 Update 3 VMWare VirtualCenter 2.0.2 Update 2 VMWare VirtualCenter 2.0.2 Update 1 VMWare Server 2.0.2 Build 203138 VMWare Server 2.0.2 VMWare Server 2.0.1 build 156745 VMWare Server 2.0.1 VMWare Server 2.0 VMWare ESX Server 3.0.3 ESX303-200910401-BG VMWare ESX Server 3.0.3 ESX303-200905401-SG VMWare ESX Server 3.0.3 ESX303-200812406-BG VMWare ESX Server 3.0.3 VMWare ESX Server 3.5 ESX350-201003403 VMWare ESX Server 3.5 ESX350-200910401 VMWare ESX Server 3.5 ESX350-200906407 VMWare ESX Server 3.5 ESX350-200904401 VMWare ESX Server 3.5 |
| Not Vulnerable: | |
Discussion
VMware WebAccess URL Forwarding Vulnerability
VMware WebAccess is prone to a URL forwarding vulnerability.
An attacker may forward web requests through the application by sending a specially crafted request to the computer or by enticing a user into following malicious URI. This may facilitate attacks against users, allow bypass of security restrictions, and aid in carrying out other attacks.
The following applications are vulnerable:
- Virtual Center 2.5 with WebAccess
- Virtual Center 2.0.2 with WebAccess
- VMware Server 2.0.2 with WebAccess
- ESX 3.5 with WebAccess
- ESX 3.0.3 with WebAccess
This issue was originally published as part of BID 39037 (VMware WebAccess Multiple Vulnerabilities). It is being assigned a new BID to better document the issue.
VMware WebAccess is prone to a URL forwarding vulnerability.
An attacker may forward web requests through the application by sending a specially crafted request to the computer or by enticing a user into following malicious URI. This may facilitate attacks against users, allow bypass of security restrictions, and aid in carrying out other attacks.
The following applications are vulnerable:
- Virtual Center 2.5 with WebAccess
- Virtual Center 2.0.2 with WebAccess
- VMware Server 2.0.2 with WebAccess
- ESX 3.5 with WebAccess
- ESX 3.0.3 with WebAccess
This issue was originally published as part of BID 39037 (VMware WebAccess Multiple Vulnerabilities). It is being assigned a new BID to better document the issue.
Exploit / POC
VMware WebAccess URL Forwarding Vulnerability
The attacker may use readily available tools to send a request to the application to carry out the URL forwarding attack or they may carry out this attack through a WebAccess user.
The attacker may use readily available tools to send a request to the application to carry out the URL forwarding attack or they may carry out this attack through a WebAccess user.
Solution / Fix
VMware WebAccess URL Forwarding Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
References
VMware WebAccess URL Forwarding Vulnerability
References:
References: