Oval Definition:	oval:org.mitre.oval:def:20317
Revision Date: 2014-01-20 Version: 5 Title: VMware ESXi and ESX Denial of Service and third party updates for Likewise components and ESX Service Console Description: MIT Kerberos 5 (aka krb5) 1.8.x through 1.8.3 does not reject RC4 key-derivation checksums, which might allow remote authenticated users to forge a (1) AD-SIGNEDPATH or (2) AD-KDC-ISSUED signature, and possibly gain privileges, by leveraging the small key space that results from certain one-byte stream-cipher operations. Family: unix Class: vulnerability Status: ACCEPTED Reference(s): CVE-2010-4020 Platform(s): VMWare ESX Server 4.1 Product(s): Definition Synopsis Patch ESX410-201104401-SG is not installed VMware ESX Server 4.1 is installed AND Patch ESX410-201104401-SG is not installed
BACK