Unrated severityNVD Advisory· Published Oct 6, 2008· Updated Apr 23, 2026
CVE-2008-4278
CVE-2008-4278
Description
VMware VirtualCenter 2.5 before Update 3 build 119838 on Windows displays a user's password in cleartext when the password contains unspecified special characters, which allows physically proximate attackers to steal the password.
Affected products
9cpe:2.3:a:vmware:virtualcenter:2.0.2:update_2:*:*:*:*:*:*+ 8 more
- cpe:2.3:a:vmware:virtualcenter:2.0.2:update_2:*:*:*:*:*:*
- cpe:2.3:a:vmware:virtualcenter:2.0.2:update_3:*:*:*:*:*:*
- cpe:2.3:a:vmware:virtualcenter:2.0.2:update_4:*:*:*:*:*:*
- cpe:2.3:a:vmware:virtualcenter:2.5:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:virtualcenter:2.5:update_1:*:*:*:*:*:*
- cpe:2.3:a:vmware:virtualcenter:*:update_2:*:*:*:*:*:*range: <=2.5
- cpe:2.3:a:vmware:virtualcenter:1.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:virtualcenter:2.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:virtualcenter:2.0.2:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
9- www.vmware.com/security/advisories/VMSA-2008-0016.htmlnvdPatch
- secunia.com/advisories/32180nvdVendor Advisory
- marc.infonvd
- secunia.com/advisories/32179nvd
- www.securityfocus.com/archive/1/497041/100/0/threadednvd
- www.securityfocus.com/bid/31569nvd
- www.securitytracker.com/idnvd
- www.vupen.com/english/advisories/2008/2740nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/45664nvd
News mentions
0No linked articles in our index yet.