Oval Definition:	oval:org.mitre.oval:def:20629
Revision Date: 2014-01-20 Version: 6 Title: VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX Description: OpenSSL before 0.9.8j, when SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG is enabled, does not prevent modification of the ciphersuite in the session cache, which allows remote attackers to force the use of a disabled cipher via vectors involving sniffing network traffic to discover a session identifier, a different vulnerability than CVE-2010-4180. Family: unix Class: vulnerability Status: ACCEPTED Reference(s): CVE-2008-7270 Platform(s): VMWare ESX Server 4.0 VMWare ESX Server 4.1 Product(s): Definition Synopsis Patch ESX410-201110204-SG is not installed VMware ESX Server 4.1 is installed AND Patch ESX410-201110204-SG is not installed OR Patch ESX400-201203401-SG is not installed VMware ESX Server 4.0 is installed AND Patch ESX400-201203401-SG is not installed
BACK