14 matches found
VMSA-2013-0014 VMware Workstation, Fusion, ESXi and ESX patches address a guest privilege escalation (remote check)
VMware Workstation, Fusion, ESXi and ESX patches address a vulnerability in the LGTOSYNC.SYS driver which could result in a privilege escalation on older Windows-based Guest Operating Systems. OpenVAS Vulnerability Test $Id: gbVMSA-2013-0014remote.nasl 6093 2017-05-10 09:03:18Z teissa $...
VMSA-2013-0011 VMware ESX and ESXi updates to third party libraries (remote check)
VMware has updated VMware ESXi and ESX to address a vulnerability in an unhandled exception in the NFC protocol handler. OpenVAS Vulnerability Test $Id: gbVMSA-2013-0011remote.nasl 6115 2017-05-12 09:03:25Z teissa $ VMSA-2013-0011 VMware ESX and ESXi updates to third party libraries remote check...
VMSA-2013-0011 VMware ESX and ESXi updates to third party libraries
VMware has updated VMware ESXi and ESX to address a vulnerability in an unhandled exception in the NFC protocol handler. OpenVAS Vulnerability Test $Id: gbVMSA-2013-0011.nasl 6079 2017-05-08 09:03:33Z teissa $ VMSA-2013-0011 VMware ESX and ESXi updates to third party libraries Authors: Michael...
VMSA-2013-0004 VMware ESXi security update for third party library
The remote ESXi is missing one or more security related Updates from VMSA-2013-0004. Relevant Releases ESXi 5.1 without patch ESXi510-201304101 ESXi 5.0 without patch ESXi500-201303101 ESXi 4.0 without patch ESXi400-201305001 ESXi 4.1 without patch ESXi410-201304401 Problem Description The ESXi...
CVE-2012-5703
The vSphere API in VMware ESXi 4.1 and ESX 4.1 allows remote attackers to cause a denial of service host daemon crash via an invalid value in a 1 RetrieveProp or 2 RetrievePropEx SOAP request...
Cross site request forgery (csrf)
The vSphere API in VMware ESXi 4.1 and ESX 4.1 allows remote attackers to cause a denial of service host daemon crash via an invalid value in a 1 RetrieveProp or 2 RetrievePropEx SOAP request...
VMware Security Update Fixes DoS, Other Vulnerabilities
Virtualization software maker VMware shipped a security update for its vSphere API yesterday that resolved a denial of service vulnerability in ESX and ESXi, as well as adding a number of open source security updates to the ESX Service Console. The patch affects the following releases: VMware ESX...
CVE-2012-1517
The VMX process in VMware ESXi 4.1 and ESX 4.1 does not properly handle RPC commands, which allows guest OS users to cause a denial of service memory overwrite and process crash or possibly execute arbitrary code on the host OS via vectors involving function pointers...
CVE-2011-1786
lsassd in Likewise Open /Enterprise 5.3 before build 7845, Open 6.0 before build 8325, and Enterprise 6.0 before build 178, as distributed in VMware ESXi 4.1 and ESX 4.1 and possibly other products, allows remote attackers to cause a denial of service daemon crash via an Active Directory login...
CVE-2011-1786
lsassd in Likewise Open /Enterprise 5.3 before build 7845, Open 6.0 before build 8325, and Enterprise 6.0 before build 178, as distributed in VMware ESXi 4.1 and ESX 4.1 and possibly other products, allows remote attackers to cause a denial of service daemon crash via an Active Directory login...
CVE-2010-4573
The Update Installer in VMware ESXi 4.1, when a modified sfcb.cfg is present, does not properly configure the SFCB authentication mode, which allows remote attackers to obtain access via an arbitrary username and password...
CVE-2010-4573
Summary (CVE-2010-4573) : VMware ESXi 4.1 Update Installer may improperly configure SFCB authentication if /etc/sfcb/sfcb.cfg was modified during an upgrade from ESXi 3.5 or 4.0. The result is that SFCB authentication could allow login with any username and password, enabling remote access. The i...
VMware ESXi 4.1 Update Installer SFCB Authentication Flaw
a. ESXi 4.1 Update Installer SFCB Authentication FlawUnder certain conditions, the ESXi 4.1 installer that upgrades an ESXi 3.5 or ESXi 4.0 host to ESXi 4.1 incorrectly handles the SFCB authentication mode. The result is that SFCB authentication could allow login with any username and password...
VMSA-2010-0020:VMware ESXi 4.1 Update Installer SFCB Authentication Flaw
VMSA-2010-0020.1 VMware ESXi 4.1 Update Installer SFCB Authentication Flaw VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2010-0020.1 VMware Security Advisory Synopsis: VMware ESXi 4.1 Update Installer SFCB Authentication Flaw VMware Security Advisory Issue date: 2010-12-21...