N/A

OpenSLP as used in ESXi has a denial-of-service vulnerability due a heap out-of-bounds read issue. A malicious actor with network access to port 427 on ESXi may be able to trigger a heap out-of-bounds read in OpenSLP service resulting in a denial-of-service condition.

N/A

N/A

VMware ESXi 缓冲区错误漏洞

VMware ESXi是美国威睿（VMware）公司的一套可直接安装在物理服务器上的服务器虚拟化平台。 VMware ESXi 中存在缓冲区错误漏洞，该漏洞源于产品中的OpenSLP对堆内存进行越界读取，攻击者可通过服务的427端口进行恶意访问进而触发漏洞导致系统拒绝服务。

N/A

N/A