CVE-2019-5544

CVSS v2.0

Critical

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions VMware ESXi and Horizon DaaS (affected versions not specified)

Description The issue is related to a heap overwrite problem in OpenSLP as used in ESXi and the Horizon DaaS appliances. This can potentially allow a remote attacker to impact the confidentiality, integrity, and availability of protected information. The severity of this issue has been evaluated to be in the Critical severity range.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

ALT-PU-2023-2022

AZL-36968

AZL-7321

BDU:2020-03338

CESA-2019_4240

CESA-2020_0199

CVE-2019-5544

DLA-2025-1

ELSA-2019-4240

ELSA-2020-0199

MGASA-2020-0075

RHSA-2019:4240

RHSA-2019_4240

RHSA-2020:0199

RHSA-2020_0199

USN-4919-1

Affected Products

Alt Linux

Centos

Horizon Daas

Openslp

Red Hat

Ubuntu

Vmware Esxi

CVE-2019-5544

Weakness Enumeration

Related Identifiers

Affected Products

References · 43