CVE-2011-1785 : VMware ESXi 4.0 and 4.1 and ESX 4.0 and 4.1 allow remote attackers to cause a denial of service (socket exhaustion) via

VMware ESXi 4.0 and 4.1 and ESX 4.0 and 4.1 allow remote attackers to cause a denial of service (socket exhaustion) via unspecified network traffic.

Published 2011-05-03 22:55:03

Updated 2018-10-09 19:32:02

Source MITRE

View at NVD, CVE.org

Vulnerability category: Denial of service

Threat overview for CVE-2011-1785

Top countries where our scanners detected CVE-2011-1785

Top open port discovered on systems with this issue 443

IPs affected by CVE-2011-1785 92

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2011-1785!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Probability of exploitation activity in the next 30 days: 5.49%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 92 % EPSS Score History EPSS FAQ

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
7.8	HIGH	AV:N/AC:L/Au:N/C:N/I:N/A:C	10.0	6.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Complete

http://lists.vmware.com/pipermail/security-announce/2011/000133.html

[Security-announce] VMSA-2011-0007 VMware ESXi and ESX Denial of Service and third party updates for Likewise components and ESX Service Console

CVEs referencing this url
http://www.securityfocus.com/bid/47627

VMware ESXi and ESX Socket Exhaustion Remote Denial of Service Vulnerability
http://www.vmware.com/security/advisories/VMSA-2011-0007.html

VMSA-2011-0007
Vendor Advisory

CVEs referencing this url
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13242

Repository / Oval Repository
http://kb.vmware.com/kb/1035108

Article Detail

CVEs referencing this url
http://www.securityfocus.com/archive/1/517739/100/0/threaded

SecurityFocus

CVEs referencing this url
http://securityreason.com/securityalert/8240

VMware ESXi and ESX Denial of Service and third party updates for Likewise components and ESX Service Console - CXSecurity.com

CVEs referencing this url
http://securitytracker.com/id?1025452

VMware ESXi and ESX Socket Consumption and Likewise Login Bug Let Remote Users Deny Service - SecurityTracker

CVEs referencing this url
https://exchange.xforce.ibmcloud.com/vulnerabilities/67195

VMware ESX Server and ESXi socket denial of service CVE-2011-1785 Vulnerability Report

Vmware » Esxi » Version: 4.0
cpe:2.3:a:vmware:esxi:4.0:*:*:*:*:*:*:*
Matching versions
Vmware » Esxi » Version: 4.1
cpe:2.3:a:vmware:esxi:4.1:*:*:*:*:*:*:*
Matching versions
Vmware » ESX » Version: 4.0
cpe:2.3:a:vmware:esx:4.0:*:*:*:*:*:*:*
Matching versions
Vmware » ESX » Version: 4.1
cpe:2.3:a:vmware:esx:4.1:*:*:*:*:*:*:*
Matching versions