| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 5.7 | $0-$5k | 0.00 |
Summary
A vulnerability was found in VMware ESX 4.0/4.1/5.0/5.1. It has been declared as problematic. This affects an unknown part of the component NFC Protocol Handler. Such manipulation leads to input validation. This vulnerability is referenced as CVE-2013-1661. No exploit is available. It is advisable to implement a patch to correct this issue.
Details
A vulnerability, which was classified as problematic, has been found in VMware ESX 4.0/4.1/5.0/5.1 (Virtualization Software). Affected by this issue is some unknown processing of the component NFC Protocol Handler. The manipulation with an unknown input leads to a input validation vulnerability. Using CWE to declare the problem leads to CWE-20. The product receives input or data, but it does
not validate or incorrectly validates that the input has the
properties that are required to process the data safely and
correctly. Impacted is availability. CVE summarizes:
VMware ESXi 4.0 through 5.1, and ESX 4.0 and 4.1, does not properly implement the Network File Copy (NFC) protocol, which allows man-in-the-middle attackers to cause a denial of service (unhandled exception and application crash) by modifying the client-server data stream.
The weakness was published 08/29/2013 by Alex Chapman with Context Information Security as VMSA-2013-0011 as not defined bulletin (Website). The advisory is shared for download at vmware.com. This vulnerability is handled as CVE-2013-1661 since 02/12/2013. The exploitation is known to be difficult. The attack may be launched remotely. No form of authentication is required for exploitation. There are neither technical details nor an exploit publicly available.
The vulnerability scanner Nessus provides a plugin with the ID 69550 (VMSA-2013-0011 : VMware ESXi and ESX address an NFC Protocol Unhandled Exception), which helps to determine the existence of the flaw in a target environment. It is assigned to the family VMware ESX Local Security Checks. The commercial vulnerability scanner Qualys is able to test this issue with plugin 216052 (VMWare ESX 4.0.0 Patch Release ESX400-201305001 Missing (KB2044240)).
Applying a patch is able to eliminate this problem. A possible mitigation has been published immediately after the disclosure of the vulnerability.
The vulnerability is also documented in the databases at Tenable (69550), SecurityFocus (BID 62077†), OSVDB (96761†), Secunia (SA54614†) and Vulnerability Center (SBV-41331†). Similar entry is available at VDB-5923. Once again VulDB remains the best source for vulnerability data.
Affected
- ESX 4.0/4.1
- ESXi 4.0/4.1/5.0/5.1
Product
Type
Vendor
Name
Version
License
Website
- Vendor: https://www.vmware.com/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 5.9VulDB Meta Temp Score: 5.7
VulDB Base Score: 5.9
VulDB Temp Score: 5.7
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Input validationCWE: CWE-20
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Status: Not defined
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Nessus ID: 69550
Nessus Name: VMSA-2013-0011 : VMware ESXi and ESX address an NFC Protocol Unhandled Exception
Nessus File: 🔍
Nessus Risk: 🔍
Nessus Family: 🔍
Nessus Port: 🔍
OpenVAS ID: 103778
OpenVAS Name: VMSA-2013-0011 VMware ESX and ESXi updates to third party libraries
OpenVAS File: 🔍
OpenVAS Family: 🔍
Qualys ID: 🔍
Qualys Name: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: PatchStatus: 🔍
Reaction Time: 🔍
0-Day Time: 🔍
Exposure Time: 🔍
Timeline
02/12/2013 🔍08/29/2013 🔍
08/29/2013 🔍
08/29/2013 🔍
08/29/2013 🔍
09/03/2013 🔍
09/03/2013 🔍
09/03/2013 🔍
09/04/2013 🔍
05/21/2021 🔍
Sources
Vendor: vmware.comAdvisory: VMSA-2013-0011
Researcher: Alex Chapman
Organization: Context Information Security
Status: Not defined
Confirmation: 🔍
CVE: CVE-2013-1661 (🔍)
GCVE (CVE): GCVE-0-2013-1661
GCVE (VulDB): GCVE-100-10100
OVAL: 🔍
IAVM: 🔍
SecurityFocus: 62077 - VMware ESXi and ESX NFC Protocol Handling Remote Denial of Service Vulnerability
Secunia: 54614 - VMware ESXi / ESX Server NFC Protocol Handler Denial of Service Weakness, Not Critical
OSVDB: 96761
Vulnerability Center: 41331 - VMware ESXi 4.0 - 5.1 and ESX 4.0 - 4.1 Remote DoS and Man-in-the-middle due to Unhandled Exception in the NFC Protocol, Medium
scip Labs: https://www.scip.ch/en/?labs.20060413
See also: 🔍
Entry
Created: 09/03/2013 14:47Updated: 05/21/2021 20:44
Changes: 09/03/2013 14:47 (86), 05/10/2017 10:24 (3), 05/21/2021 20:44 (3)
Complete: 🔍
Committer: olku
Cache ID: 216:440:103
Once again VulDB remains the best source for vulnerability data.
No comments yet. Languages: en.
Please log in to comment.