漏洞类别:General remote services
漏洞等级: 
漏洞信息
The Managed Object Browser, or MOB, is a Web-based server application available for all ESX/ESXi and vCenter Server systems. The MOB lets you examine the objects that exist on the server and navigate through the hierarchy of live objects by clicking on links.
QID detection logic (unauthenticated):
The credentials a common password was used to access MOB.
漏洞危害
An attacker could affect the confidentiality, integrity and availability of data on the target system.
解决方案
Avoid picking easy to guess passwords.
Set credentials to use strong passwords.
0daybank
文章评论