VMSA-2012-0018 VMware security updates for vCSA and ESXi

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 VMware Security Advisory Advisory ID: VMSA-2012-0018 Synopsis: VMware security updates for vCSA and ESXi Issue date: 2012-12-20 Updated on: 2012-12-20 initial advisory CVE numbers: ------------- vCSA --------------- CVE-2012-6324, CVE-2012-6325...

CVE-2012-6325

CVE-2012-6325 affects VMware vCenter Server Appliance (vCSA) 5.0 prior to Update 2, due to an XML parsing vulnerability that allows an authenticated remote user to read arbitrary files. The issue is documented in the VMware advisory VMSA-2012-0018 and is addressed by upgrading to vCSA 5.0 Update ...