Vulnerability Name:

CVE-2009-3733 (CCN-54014)

Assigned:2009-10-27
Published:2009-10-27
Updated:2018-10-10
Summary:Directory traversal vulnerability in VMware Server 1.x before 1.0.10 build 203137 and 2.x before 2.0.2 build 203138 on Linux, VMware ESXi 3.5, and VMware ESX 3.0.3 and 3.5 allows remote attackers to read arbitrary files via unspecified vectors.
CVSS v3 Severity:2.6 Low (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:N/A:N)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): High
Privileges Required (PR): Low
User Interaction (UI): Required
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): None
Availibility (A): None
CVSS v2 Severity:5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
4.1 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N/E:F/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
3.5 Low (CCN CVSS v2 Vector: AV:N/AC:M/Au:S/C:P/I:N/A:N)
2.9 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:S/C:P/I:N/A:N/E:F/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
Vulnerability Type:CWE-22
Vulnerability Consequences:Obtain Information
References:Source: MITRE
Type: CNA
CVE-2009-3733

Source: MLIST
Type: Patch, Vendor Advisory
[security-announce] 20091027 VMSA-2009-0015 VMware hosted products and ESX patches resolve two security issues

Source: CCN
Type: SA37186
VMware Products Directory Traversal File Disclosure Vulnerability

Source: SECUNIA
Type: Vendor Advisory
37186

Source: GENTOO
Type: UNKNOWN
GLSA-201209-25

Source: CCN
Type: SECTRACK ID: 1023088
VMware Server Directory Traversal Flaw Lets Remote Users Obtain Arbitrary Files

Source: SECTRACK
Type: UNKNOWN
1023088

Source: CCN
Type: SECTRACK ID: 1023089
VMware ESX/ESXi Directory Traversal Flaw Lets Remote Users Obtain Arbitrary Files

Source: SECTRACK
Type: UNKNOWN
1023089

Source: CCN
Type: OSVDB ID: 59440
VMware Multiple Products sdk Path HTTP Request Directory Traversal Arbitrary File Access

Source: BUGTRAQ
Type: UNKNOWN
20091027 VMSA-2009-0015 VMware hosted products and ESX patches resolve two security issues

Source: BID
Type: UNKNOWN
36842

Source: CCN
Type: BID-36842
VMware Products Directory Traversal Vulnerability

Source: CCN
Type: VMSA-2009-0015
VMware hosted products and ESX patches resolve two security issues

Source: CONFIRM
Type: Patch, Vendor Advisory
http://www.vmware.com/security/advisories/VMSA-2009-0015.html

Source: VUPEN
Type: Patch, Vendor Advisory
ADV-2009-3062

Source: XF
Type: UNKNOWN
vmware-unspecified-dir-traversal(54014)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:7822

Source: CCN
Type: Rapid7 Vulnerability and Exploit Database [05-30-2018]
VMware Server Directory Traversal Vulnerability

Vulnerable Configuration:Configuration 1:
  • cpe:/a:vmware:esx:3.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:esx:3.5:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:esxi:3.5:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:server:1.0:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:server:1.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:server:1.0.1_build_29996:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:server:1.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:server:1.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:server:1.0.4:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:server:1.0.4_build_56528:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:server:1.0.5:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:server:1.0.6:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:server:1.0.7:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:server:1.0.8:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:server:1.0.9:*:*:*:*:*:*:*

    • Configuration 2:
  • cpe:/a:vmware:server:2.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:server:2.0.1:*:*:*:*:*:*:*
  • AND
  • cpe:/o:linux:linux_kernel:*:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:vmware:server:1.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:esx_server:3.5:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:server:1.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:server:1.0.4:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:server:1.0.5:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:server:1.0.7:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:esx_server:3.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:server:1.0.6:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:server:1.0.8:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:server:2.0:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:server:1.0.9:*:*:*:*:*:*:*
  • OR cpe:/a:vmware:server:2.0.1:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:7822
    V
    		VMware directory traversal vulnerability
    2010-06-07
    BACK
    vmware esx 3.0.3
    vmware esx 3.5
    vmware esxi 3.5
    vmware server 1.0
    vmware server 1.0.1
    vmware server 1.0.1_build_29996
    vmware server 1.0.2
    vmware server 1.0.3
    vmware server 1.0.4
    vmware server 1.0.4_build_56528
    vmware server 1.0.5
    vmware server 1.0.6
    vmware server 1.0.7
    vmware server 1.0.8
    vmware server 1.0.9
    vmware server 2.0.0
    vmware server 2.0.1
    linux linux *
    vmware server 1.0.3
    vmware esx server 3.5
    vmware server 1.0.2
    vmware server 1.0.4
    vmware server 1.0.5
    vmware server 1.0.7
    vmware esx server 3.0.3
    vmware server 1.0.6
    vmware server 1.0.8
    vmware server 2.0
    vmware server 1.0.9
    vmware server 2.0.1