19 matches found
EUVD-2016-8316
Malware in sbrugna...
ESXi 5.5 < Build 5230635 Multiple Vulnerabilities (VMSA-2017-0006) (remote check) (PCI-DSS check)
The version of the remote VMware ESXi 5.5 host is prior to build 5230635. It is, therefore, affected by multiple vulnerabilities: - VMware ESXi 5.5 without patch ESXi550-201703401-SG has a Heap Buffer Overflow in SVGA. This issue may allow a guest to execute code on the host. CVE-2017-4902 - VMwa...
ESXi 5.5 < Build 6480267 RPC NULL Pointer Dereference Vulnerability (VMSA-2017-0015) (remote check)
The version of the remote VMware ESXi 5.5 host is prior to build 6480267. It is, therefore, affected by a NULL pointer dereference vulnerability related to handling RPC requests that could allow an attacker to crash a virtual machine. C Tenable Network Security, Inc. include"compat.inc"; if...
Null pointer dereference
VMware ESXi 6.5 without patch ESXi650-201707101-SG, ESXi 6.0 without patch ESXi600-201706101-SG, ESXi 5.5 without patch ESXi550-201709101-SG, Workstation 12.x before 12.5.3, Fusion 8.x before 8.5.4 contain a NULL pointer dereference vulnerability. This issue occurs when handling guest RPC request...
CVE-2017-4904
The XHCI controller in VMware ESXi 6.5 without patch ESXi650-201703410-SG, 6.0 U3 without patch ESXi600-201703401-SG, 6.0 U2 without patch ESXi600-201703403-SG, 6.0 U1 without patch ESXi600-201703402-SG, and 5.5 without patch ESXi550-201703401-SG; Workstation Pro / Player 12.x prior to 12.5.5; an...
ESXi 5.5 < Build 5230635 Multiple Vulnerabilities (VMSA-2017-0006) (remote check)
The version of the remote VMware ESXi 5.5 host is prior to build 5230635. It is, therefore, affected by multiple vulnerabilities : - An unspecified flaw exists in memory initialization that allows an attacker on the guest to execute arbitrary code on the host. CVE-2017-4904 - An unspecified flaw...
VMware ESXi updates address a cross-site scripting issue (VMSA-2016-003) - Remote Version Check
VMware ESXi updates address a critical glibc security vulnerability SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...
ESXi 5.5 < Build 3248547 Shared Folders (HGFS) Guest Privilege Escalation (VMSA-2016-0001) (remote check)
The remote VMware ESXi 5.5 host is prior to build 3248547. It is, therefore, affected by a guest privilege escalation vulnerability in the Shared Folders HGFS feature due to improper validation of user-supplied input. A local attacker can exploit this to corrupt memory, resulting in an elevation ...
A proxy VM may become inaccessible during hotadd backup
Challenge 'Hotadd' backup proxy virtual machine becomes inaccessible or powered off with the following possible symptoms: 1. Virtual machine randomly stops responding. 2. When guest operating system fails, there is no BSOD or kernel panic. 3. The vmx process of virtual machine fails or is killed ...
ESXi 5.5 < Build 2352327 Multiple Vulnerabilities (remote check) (POODLE)
The remote VMware ESXi host is version 5.5 prior to build 2352327. It is, therefore, affected by the following vulnerabilities : - An error exists related to DTLS SRTP extension handling and specially crafted handshake messages that can allow denial of service attacks via memory leaks...
VMware high latency feature resets to 'normal' after snapshot removal
Challenge The Latency Sensitivity option resets to 'normal' after VMware snapshot removal. This behavior persists regardless of any settings. Cause This is a known issue in ESXi 5.5.x. Please see the following KB article for more information: http://kb.vmware.com/kb/2079787 Solution This issue wi...
ESXi 5.5 < Build 1881737 OpenSSL Library Multiple Vulnerabilities (remote check)
The remote VMware ESXi host is 5.5 prior to build 1881737. It is, therefore, affected by the following vulnerabilities in the OpenSSL library : - An error exists in the function 'ssl3readbytes' that could allow data to be injected into other sessions or allow denial of service attacks. Note this...
VMSA-2014-0005: VMware Workstation, Player, Fusion, and ESXi patches address a guest privilege escalation
VMware Workstation, Player, Fusion, and ESXi patches address a vulnerability in VMware Tools which could result in a privilege escalation on Microsoft Windows 8.1. OpenVAS Vulnerability Test $Id: gbVMSA-2014-0005.nasl 6995 2017-08-23 11:52:03Z teissa $ VMSA-2014-0005: VMware Workstation, Player,...
VMSA-2014-0004 VMware product updates address OpenSSL security vulnerabilities
VMware product updates address OpenSSL security vulnerabilities. OpenVAS Vulnerability Test $Id: gbVMSA-2014-0004.nasl 6759 2017-07-19 09:56:33Z teissa $ VMSA-2014-0004: VMware product updates address OpenSSL security vulnerabilities Authors: Michael Meyer Copyright: Copyright c 2014 Greenbone...
VMSA-2014-0004 VMware product updates address OpenSSL security vulnerabilities
VMware product updates address OpenSSL security vulnerabilities. OpenVAS Vulnerability Test $Id: gbVMSA-2014-0004remote.nasl 6750 2017-07-18 09:56:47Z teissa $ VMSA-2014-0004: VMware product updates address OpenSSL security vulnerabilities remote check Authors: Michael Meyer Copyright: Copyright ...
Failed to open VMDK. ESXi 5.5 and Veeam 7.0.0.764+
After updating Veeam or VMware such that a combination of ESXi 5.5 and Veeam 7.0.0.764 or higher exist within the environment, the jobs fail with error “Failed to open VMDK” and/or “Host not licensed...
VMware ESXi updates to third party libraries (VMSA-2014-0002) - Remote Version Check
VMware has updated ESXi third party libraries. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
ESXi 5.5 < Build 1474526 File Descriptors Privilege Escalation (remote check)
The remote VMware ESXi 5.5 host is affected by an error in the handling of certain Virtual Machine file descriptors. This could allow an unprivileged user with the 'Add Existing Disk' privilege to obtain read and write access to arbitrary files, possibly leading to arbitrary code execution after ...
VMSA-2013-0016 VMware ESXi and ESX unauthorized file access through vCenter Server and ESX (remote check)
VMware ESXi and ESX unauthorized file access through vCenter Server and ESX OpenVAS Vulnerability Test $Id: gbVMSA-2013-0016remote.nasl 6074 2017-05-05 09:03:14Z teissa $ VMSA-2013-0016 VMware ESXi and ESX unauthorized file access through vCenter Server and ESX remote check Authors: Michael Meyer...