73 matches found
VMware ESXi/ESX address several security issues (VMSA-2014-0001)
VMware ESXi and ESX address several security issues. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
VMware ESXi address several security issues (VMSA-2014-0001) - Remote Version Check
VMware ESXi address several security issues. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...
VMware Fusion 5.x < 5.0.1 VMX Process DoS (VMSA-2014-0001)
The version of VMware Fusion 5.x installed on the remote Mac OS X host is prior to 5.0.1. It is, therefore, reportedly affected by a denial of service vulnerability due to an issue with handling invalid ports that could allow a guest user to crash the VMX process. C Tenable Network Security, Inc...
ESXi 5.0 < Build 1311175 Multiple Vulnerabilities (remote check)
The remote VMware ESXi 5.0 host is affected by the following security vulnerabilities : - Multiple errors exist related to OpenSSL that could allow information disclosure or denial of service attacks. CVE-2013-0166, CVE-2013-0169 - An error exists in the libxml2 library related to the expansion o...
CVE-2012-1517
The VMX process in VMware ESXi 4.1 and ESX 4.1 does not properly handle RPC commands, which allows guest OS users to cause a denial of service memory overwrite and process crash or possibly execute arbitrary code on the host OS via vectors involving function pointers...
CVE-2012-1516
The VMX process in VMware ESXi 3.5 through 4.1 and ESX 3.5 through 4.1 does not properly handle RPC commands, which allows guest OS users to cause a denial of service memory overwrite and process crash or possibly execute arbitrary code on the host OS via vectors involving data pointers...
Design/Logic Flaw
The VMX process in VMware ESXi 4.1 and ESX 4.1 does not properly handle RPC commands, which allows guest OS users to cause a denial of service memory overwrite and process crash or possibly execute arbitrary code on the host OS via vectors involving function pointers...
CVE-2012-1517
The VMX process in VMware ESXi 4.1 and ESX 4.1 does not properly handle RPC commands, which allows guest OS users to cause a denial of service memory overwrite and process crash or possibly execute arbitrary code on the host OS via vectors involving function pointers...
CVE-2012-1517
CVE-2012-1517 affects VMware ESXi/ESX 4.1 where the VMX process mishandles RPC commands, allowing a guest user to cause a memory overwrite and denial of service or potentially execute code on the host via function pointer vectors. Connected sources confirm the issue is tied to RPC handling in VMX...
CVE-2012-1516
Vulnerability CVE-2012-1516 affects VMware VMX RPC handling in ESXi/ESX 3.5–4.1 (and related Workstation/Player components). A guest user could cause a denial of service or, potentially, execute code on the host via data-pointer related paths. Exploitation relies on triggering problematic RPC han...
CVE-2012-2449
CVE-2012-2449 describes an out-of-bounds memory write in the virtual floppy device configuration that could crash the VMX process or allow code execution on the host, given administrative guest privileges. Affected VMware products include Workstation 8.x (pre-8.0.3), Player 4.x (pre-4.0.3), Fusio...
Design/Logic Flaw
VMware Workstation 6.0.x before 6.0.3 and 5.5.x before 5.5.6, VMware Player 2.0.x before 2.0.3 and 1.0.x before 1.0.6, VMware ACE 2.0.x before 2.0.1 and 1.0.x before 1.0.5, and VMware Server 1.0.x before 1.0.5 on Windows allow local users to gain privileges via an unspecified manipulation of a...
CVE-2008-1363
VMware Workstation 6.0.x before 6.0.3 and 5.5.x before 5.5.6, VMware Player 2.0.x before 2.0.3 and 1.0.x before 1.0.6, VMware ACE 2.0.x before 2.0.1 and 1.0.x before 1.0.5, and VMware Server 1.0.x before 1.0.5 on Windows allow local users to gain privileges via an unspecified manipulation of a...