Memory corruption

VMware vCenter Server 4.0 before Update 4b and 4.1 before Update 3a, VMware VirtualCenter 2.5, VMware vSphere Client 4.0 before Update 4b and 4.1 before Update 3a, VMware VI-Client 2.5, VMware ESXi 3.5 through 4.1, and VMware ESX 3.5 through 4.1 do not properly implement the management...

CVE-2013-1405

CVE-2013-1405 affects multiple VMware products (vCenter Server, VirtualCenter, vSphere Client, VI-Client, ESXi/ESX 3.5–4.1). A flaw in the management authentication protocol allows remote servers to trigger code execution or memory corruption via unspecified vectors. VMware’s VMSA-2013-0001 descr...

VMware vSphere Hypervisor Vulnerability

Core Security - Corelabs Advisory 1. Advisory Information Title: VMware vSphere Hypervisor Vulnerability Advisory ID: CORE-2012-0710 Advisory URL: Date published: 2012-11-15 Date of last update: 2012-11-16 Vendors contacted: VMware Release mode: Coordinated release 2. Vulnerability Information...

VMWare VI Client Version Detection

Binary data 6548.prm...

VMSA-2011-0009.3 VMware hosted product updates, ESX patches and VI Client update resolve multiple security issues

The remote ESXi is missing one or more security related Updates from VMSA-2011-0009.3. Summary VMware hosted product updates, ESX patches and VI Client update resolve multiple security issues. Relevant releases VMware Workstation 7.1.3 and earlier VMware Player 3.1.3 and earlier VMware Fusion 3.1...

VMware ESXi/ESX patches and VI Client update resolve multiple security issues (VMSA-2011-0009.3)

The remote ESXi is missing one or more security related Updates from VMSA-2011-0009.3. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Tom Sawyer GET Extension Factory COM Object Instantiation Memory Corruption

Added: 06/19/2011 CVE: CVE-2011-2217 BID: 48099 Background Tom Sawyer Software produces a variety of data visualization, layout, and analysis tools. Problem Certain ActiveX controls in tsgetxu71ex552.dll and tsgetx71ex552.dll in Tom Sawyer GET Extension Factory 5.5.2.237, as used in VI Client...

Tom Sawyer GET Extension Factory COM Object Instantiation Memory Corruption

Added: 06/19/2011 CVE: CVE-2011-2217 BID: 48099 Background Tom Sawyer Software produces a variety of data visualization, layout, and analysis tools. Problem Certain ActiveX controls in tsgetxu71ex552.dll and tsgetx71ex552.dll in Tom Sawyer GET Extension Factory 5.5.2.237, as used in VI Client...

CVE-2011-2217

Certain ActiveX controls in 1 tsgetxu71ex552.dll and 2 tsgetx71ex552.dll in Tom Sawyer GET Extension Factory 5.5.2.237, as used in VI Client aka VMware Infrastructure Client 2.0.2 before Build 230598 and 2.5 before Build 204931 in VMware Infrastructure 3, do not properly handle attempted...

Memory corruption

Certain ActiveX controls in 1 tsgetxu71ex552.dll and 2 tsgetx71ex552.dll in Tom Sawyer GET Extension Factory 5.5.2.237, as used in VI Client aka VMware Infrastructure Client 2.0.2 before Build 230598 and 2.5 before Build 204931 in VMware Infrastructure 3, do not properly handle attempted...

CVE-2011-2217

Certain ActiveX controls in 1 tsgetxu71ex552.dll and 2 tsgetx71ex552.dll in Tom Sawyer GET Extension Factory 5.5.2.237, as used in VI Client aka VMware Infrastructure Client 2.0.2 before Build 230598 and 2.5 before Build 204931 in VMware Infrastructure 3, do not properly handle attempted...

VMSA-2011-0009 : VMware hosted product updates, ESX patches and VI Client update resolve multiple security issues

a. VMware vmkernel third-party e1000e Driver Packet Filter Bypass There is an issue in the e1000e Linux driver for Intel PRO/1000 adapters that allows a remote attacker to bypass packet filters. The Common Vulnerabilities and Exposures project cve.mitre.org has assigned the name CVE-2009-4536 to...

VMSA-2011-0009:VMware hosted product updates, ESX patches and VI Client update resolve multiple security issue

VMSA-2011-0009.3 VMware hosted product updates, ESX patches and VI Client update resolve multiple security issues VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2011-0009.3 VMware Security Advisory Synopsis: VMware hosted product updates, ESX patches and VI Client update...

VMSA-2010-0007:VMware hosted products, vCenter Server and ESX patches resolve multiple security issues

VMSA-2010-0007.1 VMware hosted products, vCenter Server and ESX patches resolve multiple security issues VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2010-0007.1 VMware Security Advisory Synopsis: VMware hosted products, vCenter Server and ESX patches resolve multiple...

VMSA-2009-0005 VMware Hosted products, VI Client and patches for ESX and ESXi resolve multiple security issues

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ VMware Security Advisory Advisory ID: VMSA-2009-0005 Synopsis: VMware Hosted products, VI Client and patches for ESX and ESXi resolve multiple security issues Issue date:...

Default credentials

VI Client in VMware VirtualCenter before 2.5 Update 4, VMware ESXi 3.5 before Update 4, and VMware ESX 3.5 before Update 4 retains the VirtualCenter Server password in process memory, which might allow local users to obtain this password...

CVE-2009-0518

CVE-2009-0518 describes a vulnerability where the VirtualCenter Server password may be retained in the memory of VI Client on VMware products. Affected: VI Client, VirtualCenter Server in VMware VirtualCenter prior to 2.5 Update 4, ESXi 3.5 prior to Update 4, and ESX 3.5 prior to Update 4. Impact...