VMSA-2012-0018 VMware security updates for vCSA and ESXi

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 VMware Security Advisory Advisory ID: VMSA-2012-0018 Synopsis: VMware security updates for vCSA and ESXi Issue date: 2012-12-20 Updated on: 2012-12-20 initial advisory CVE numbers: ------------- vCSA --------------- CVE-2012-6324, CVE-2012-6325...

vCenter Server Appliance目录遍历漏洞(CVE-2012-6324)

Bugtraq ID:57021 CVE ID:CVE-2012-6324 VMware vCenter Server可以快速部署虚拟机，并监控物理服务器和虚拟机的性能，可通过单个界面部署、监控和管理虚拟化IT 环境，并确保最佳的服务级别。 vCenter Server Appliance存在一个目录遍历漏洞，允许通过验证的远程用户读取系统敏感文件内容。 0 VMware vCenter Server Appliance 5.x 厂商解决方案 VMware vCenter Server Appliance 5.1和vCenter Server Appliance 5.0 Update...

CVE-2012-6324

CVE-2012-6324 is a directory traversal vulnerability in VMware vCenter Server Appliance (vCSA) affecting vCSA 5.0 before Update 2 and 5.1 before Patch 1. An authenticated remote user can read arbitrary files via unspecified vectors. The advisory VMSA-2012-0018 confirms the issue and its remediati...

VMware security updates for vCSA, vCenter Server, and ESXi

a. vCenter Server Appliance directory traversal The vCenter Server Appliance vCSA contains a directory traversal vulnerability that allows an authenticated remote user to retrieve arbitrary files. Exploitation of this issue may expose sensitive information stored on the server. VMware would like ...

VMSA-2012-0018:VMware security updates for vCSA, vCenter Server, and ESXi

VMSA-2012-0018.2 VMware security updates for vCSA, vCenter Server, and ESXi VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2012-0018.2 VMware Security Advisory Synopsis: VMware security updates for vCSA, vCenter Server, and ESXi VMware Security Advisory Issue date: 2012-12-20...