Buffer overflow in Vmware Esx

CVE-2013-3657

Buffer overflow in VMware ESXi 4.0 through 5.0, and ESX 4.0 and 4.1, allows remote attackers to execute arbitrary code or cause a denial of service via unspecified vectors.

Vulnerability class: Buffer Overflow

EPSS: 0.013 (79.8th percentile) — read the EPSS interpretation.

Affected products

Vmware Esx — versions 4.0, 4.1
Vmware Esxi — versions 4.0, 4.1, 5.0
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

JVNDB-2013-000085 (x_refsource_JVNDB, third-party-advisory)
JVN#19847770 (x_refsource_JVN, third-party-advisory)
vultures@jpcert.or.jp (x_refsource_CONFIRM)