CVE-2009-3731

Name of the Vulnerable Software and Affected Versions VMware vCenter versions 4.0 through 4.0 before Update 1 Build 208156 VMware Server version 2.0.2 VMware ESX version 4.0 VMware Lab Manager versions 2.x VMware vCenter Lab Manager versions 3.x through 4.x before 4.0.1 VMware Stage Manager versions 1.x before 4.0.1 WebWorks Publisher versions 6.x through 8.x WebWorks Publisher version 2003 WebWorks ePublisher versions 9.0.x through 9.3, 2008.1 through 2008.4, and 2009.x before 2009.3

Description The issue allows remote attackers to inject arbitrary web script or HTML via several components, including "wwhelp entry.html", "wwhelp/wwhimpl/api.htm", "wwhelp/wwhimpl/common/html/frameset.htm", "wwhelp/wwhimpl/common/scripts/switch.js", and the window.opener component in "wwhelp/wwhimpl/common/html/bookmark.htm". This is related to unspecified parameters and messages used in topic links for the bookmarking functionality.

Recommendations For VMware vCenter versions 4.0 through 4.0 before Update 1 Build 208156, update to a version that includes Update 1 Build 208156 or later. For VMware Server version 2.0.2, consider disabling the vulnerable components until a patch is available. For VMware ESX version 4.0, restrict access to the vulnerable API endpoints until a fix is provided. For VMware Lab Manager versions 2.x, avoid using the parameter window.opener in the affected API endpoint until the issue is resolved. For VMware vCenter Lab Manager versions 3.x through 4.x before 4.0.1, update to version 4.0.1 or later. For VMware Stage Manager versions 1.x before 4.0.1, update to version 4.0.1 or later. For WebWorks Publisher versions 6.x through 8.x, WebWorks Publisher version 2003, and WebWorks ePublisher versions 9.0.x through 9.3, 2008.1 through 2008.4, and 2009.x before 2009.3, update to a version that includes the necessary security fixes.