Buffer overflow in OpenPegasus Management server, when compiled to use PAM and with PEGASUS_USE_PAM_STANDALONE_PROC defined, as used in VMWare ESX Server 3.0.1 and 3.0.2, might allow remote attackers to execute arbitrary code via vectors related to PAM authentication, a different vulnerability than CVE-2008-0003.
Software | From | Fixed in |
---|---|---|
vmware / esx | 3.0.1 | 3.0.1.x |
vmware / esx | 3.0.2 | 3.0.2.x |
openpegasus / management_server | - | - |