CVE-2006-2481
VMware ESX 2.0.x < 2.0.2 and 2.x < 2.5.2 patch 4 - Privilege Escalation via Base64-Encoded Cookie Credentials
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2006-2481. PoCs published by Stephen de Vries.
AI-analyzed exploit summary The provided text describes an information disclosure vulnerability in VMware ESX Server versions 2.5.3 P2 and earlier. It outlines two issues where session IDs, usernames, and passwords may be exposed due to insecure handling of session cookies and authentication credentials.
Description
VMware ESX Server 2.0.x before 2.0.2 and 2.x before 2.5.2 patch 4 stores authentication credentials in base 64 encoded format in the vmware.mui.kid and vmware.mui.sid cookies, which allows attackers to gain privileges by obtaining the cookies using attacks such as cross-site scripting (CVE-2005-3619).
Exploits (1)
The provided text describes an information disclosure vulnerability in VMware ESX Server versions 2.5.3 P2 and earlier. It outlines two issues where session IDs, usernames, and passwords may be exposed due to insecure handling of session cookies and authentication credentials.