VMWare Products Session Hijack Vulnerability

Last Update Date: 15 Apr 2016 10:24 Release Date: 15 Apr 2016 3256 Views

RISK: Medium Risk

Medium Risk

TYPE: Operating Systems - VM Ware

TYPE: VM Ware

A vulnerability was identified in multiple VMware products. A remote user can hijack the target user's session.

Affected products include VMware vCenter Server, VMware vCloud Director and VMware vRealize Automation Identity Appliance.

Impact

  • Security Restriction Bypass

System / Technologies affected

  • VMware vCenter Server versions: 5.5 U3a, U3b, U3c, 6.0
  • VMware vCloud Director 5.5.5
  • VMware vRealize Automation Identity Appliance 6.2.4

 

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Update to VMware vCenter Server 5.5 U3d, 6.0 U2
  • Update to VMware vCloud Director 5.5.6
  • Update to VMware vRealize Automation Identity Appliance 6.2.4.1

 

Vulnerability Identifier

Source

Related Link

Share with

Previous

Juniper ScreenOS Multiple Vulnerabilities

15 Apr 2016 3204 Views

Next

QuickTime for Windows End of Support and Multiple Vulnerabilities

18 Apr 2016 4065 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY