Vmware · Vmware Virtualcenter · CVE-2009-0518
**Name of the Vulnerable Software and Affected Versions**
VMware VirtualCenter versions prior to 2.5 Update 4
VMware ESXi versions prior to 3.5 Update 4
VMware ESX versions prior to 3.5 Update 4
**Description**
The issue allows local users to potentially obtain the VirtualCenter Server password, as it is retained in process memory.
**Recommendations**
For VMware VirtualCenter versions prior to 2.5 Update 4, update to version 2.5 Update 4 or later.
For VMware ESXi versions prior to 3.5 Update 4, update to version 3.5 Update 4 or later.
For VMware ESX versions prior to 3.5 Update 4, update to version 3.5 Update 4 or later.