CVE-2005-4583
VMware ESX Server 2.x-2.5.x - Remote Code Execution via Management Interface
Title source: llmDescription
Unspecified vulnerability in the Management Interface in VMware ESX Server 2.x up to 2.5.x before 24 December 2005 allows "remote code execution in the Web browser" via unspecified attack vectors, probably related to cross-site scripting (XSS).
References (6)
Core 6
Core References
Patch x_refsource_confirm
http://www.vmware.com/support/kb/enduser/std_adp.php?p_faqid=2001
Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/16086
Exploit, Patch vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1015422
Patch, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/18250
Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2005/3084
Patch vdb-entry
x_refsource_osvdb
http://www.osvdb.org/22119
Scores
EPSS
0.0160
EPSS Percentile
81.9%
Details
CWE
CWE-79
Status
published
Products (6)
vmware/esx
2.0
vmware/esx
2.0.1
vmware/esx
2.1.1
vmware/esx
2.1.2
vmware/esx
2.5
vmware/esx
2.5.2
Published
Dec 29, 2005
Tracked Since
Feb 18, 2026