Чтобы помнить:
Under certain conditions, the ESXi 4.1 installer that upgrades an ESXi 3.5 or ESXi 4.0 host to ESXi 4.1 incorrectly handles the SFCB authentication mode . The result is that SFCB authentication could allow login with any username and password combination.
An ESXi 4.1 host is affected if all of the following apply:
The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2010-4573 to this issue.
Verify that your deployment of ESX 4.1 is affected as follows:
An ESXi 4.1 host is affected if all of the following apply:
- ESXi 4.1 was upgraded from ESXi 3.5 or ESXi 4.0
- The SFCB configuration file /etc/sfcb/sfcb.cfg was modified prior to the upgrade.
- The sfcbd daemon is running (sfcbd runs by default).
The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2010-4573 to this issue.
Verify that your deployment of ESX 4.1 is affected as follows:
- Log in to your ESXi 4.1 host using Tech Support mode as described in Using Tech Support Mode in ESXi 4.1 (KB 1017910).
- Open /etc/sfcb/sfcb.cfg
- Find the line with basicAuthLib, your deployment of ESX 4.1 is affected if the value for the parameter is basicAuthLib: sfcBasicAuthentication. Your system is not affected if the value for the parameter is listed as sfcBasicPAMAuthentication.
0 коммент.:
Отправить комментарий