CVE-2013-1659

Vmware Vcenter Server - Denial of Service

Title source: rule

Description

VMware vCenter Server 4.0 before Update 4b, 5.0 before Update 2, and 5.1 before 5.1.0b; VMware ESXi 3.5 through 5.1; and VMware ESX 3.5 through 4.1 do not properly implement the Network File Copy (NFC) protocol, which allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption) by modifying the client-server data stream.

References (1)

Scores

EPSS 0.0088
EPSS Percentile 75.1%

Classification

Status draft

Affected Products (24)

vmware/vcenter_server
vmware/vcenter_server
vmware/vcenter_server
vmware/vcenter_server
vmware/vcenter_server
vmware/vcenter_server
vmware/vcenter_server_appliance
vmware/vcenter_server_appliance
vmware/vcenter_server
vmware/vcenter_server
vmware/esxi
vmware/esxi
vmware/esxi
vmware/esxi
vmware/esxi
... and 9 more

Timeline

Published Feb 22, 2013
Tracked Since Feb 18, 2026