Unrated severityNVD Advisory· Published Nov 2, 2009· Updated Apr 23, 2026
CVE-2009-3733
CVE-2009-3733
Description
Directory traversal vulnerability in VMware Server 1.x before 1.0.10 build 203137 and 2.x before 2.0.2 build 203138 on Linux, VMware ESXi 3.5, and VMware ESX 3.0.3 and 3.5 allows remote attackers to read arbitrary files via unspecified vectors.
Affected products
17cpe:2.3:a:vmware:server:1.0:*:*:*:*:*:*:*+ 13 more
- cpe:2.3:a:vmware:server:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:server:1.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:server:1.0.1_build_29996:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:server:1.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:server:1.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:server:1.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:server:1.0.4_build_56528:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:server:1.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:server:1.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:server:1.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:server:1.0.8:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:server:1.0.9:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:server:2.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:server:2.0.1:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
10- lists.vmware.com/pipermail/security-announce/2009/000069.htmlnvdPatchVendor Advisory
- www.vmware.com/security/advisories/VMSA-2009-0015.htmlnvdPatchVendor Advisory
- www.vupen.com/english/advisories/2009/3062nvdPatchVendor Advisory
- security.gentoo.org/glsa/glsa-201209-25.xmlnvdThird Party Advisory
- securitytracker.com/idnvdThird Party AdvisoryVDB Entry
- securitytracker.com/idnvdThird Party AdvisoryVDB Entry
- www.securityfocus.com/archive/1/507523/100/0/threadednvdThird Party AdvisoryVDB Entry
- www.securityfocus.com/bid/36842nvdThird Party AdvisoryVDB Entry
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7822nvdThird Party Advisory
- secunia.com/advisories/37186nvdBroken Link
News mentions
0No linked articles in our index yet.