Unrated severityNVD Advisory· Published Dec 22, 2010· Updated Apr 29, 2026

CVE-2010-4573

Description

The Update Installer in VMware ESXi 4.1, when a modified sfcb.cfg is present, does not properly configure the SFCB authentication mode, which allows remote attackers to obtain access via an arbitrary username and password.

Affected products

VMware/Esxi
cpe:2.3:a:vmware:esxi:4.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/42591nvdVendor Advisory
www.vmware.com/security/advisories/VMSA-2010-0020.htmlnvdVendor Advisory
www.vupen.com/english/advisories/2010/3303nvdVendor Advisory
kb.vmware.com/kb/1031761nvd
lists.vmware.com/pipermail/security-announce/2010/000114.htmlnvd
securitytracker.com/idnvd
www.securityfocus.com/archive/1/515420/100/0/threadednvd
www.securityfocus.com/bid/45543nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000