oval:org.mitre.oval:def:20561
| Definition Id: oval:org.mitre.oval:def:20561 | |||
| Oval ID: | oval:org.mitre.oval:def:20561 | ||
| Title: | VMware vSphere and vCOps updates to third party libraries | ||
| Description: | OpenSSL before 1.0.0c, when J-PAKE is enabled, does not properly validate the public parameters in the J-PAKE protocol, which allows remote attackers to bypass the need for knowledge of the shared secret, and successfully authenticate, by sending crafted values in each round of the protocol. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2010-4252 | Version: | 4 |
| Platform(s): | VMWare ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:13012 | |||
| Oval ID: | oval:org.mitre.oval:def:13012 | ||
| Title: | VMware ESX Server 4.1 is installed | ||
| Description: | The operating system installed on the system is VMware ESX Server 4.1. | ||
| Family: | unix | Class: | inventory |
| Reference(s): | cpe:/o:vmware:esx:4.1 | Version: | 5 |
| Platform(s): | VMware ESX Server 4.1 | Product(s): | |
| Definition Synopsis: | |||
| Referenced By: | |||
| oval:org.mitre.oval:def:20561 | |||
