VMware ESXi, vCenter Server Appliance, Workstation and Fusion updates address multiple security vulnerabilities

2017-12-1900:00:00

www.vmware.com

520

0.15 Low

EPSS

Percentile

95.8%

JSON

a. ESXi, Workstation, and Fusion stack overflow via authenticated VNC session

VMware ESXi, Workstation, and Fusion contain a vulnerability that could allow an authenticated VNC session to cause a stack overflow via a specific set of VNC packets. Successful exploitation of this issue could result in remote code execution in a virtual machine via the authenticated VNC session.

Note: In order for exploitation to be possible in ESXi, VNC must be manually enabled in a virtual machine’s .vmx configuration file. In addition, ESXi must be configured to allow VNC traffic through the built-in firewall.

VMware would like to thank Lilith Wyatt and another member of Cisco Talos for reporting this issue to us.

The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the identifier CVE-2017-4941 to this issue.

Column 5 of the following table lists the action required to remediate the vulnerability in each release, if a solution is available.

CPENameOperatorVersion
esxiltESXi600-201711101-SG
esxiltESXi550-201709101-SG
workstationlt12.5.8
fusionlt8.5.9
esxiltESXi650-201710401-BG
esxiltESXi650-201712103-SG
esxiltESXi600-201711103-SG
esxiltESXi550-201709102-SG
vcsalt6.5 U1d

Name	Operator	Version
esxi	lt	ESXi600-201711101-SG
esxi	lt	ESXi550-201709101-SG
workstation	lt	12.5.8
fusion	lt	8.5.9
esxi	lt	ESXi650-201710401-BG
esxi	lt	ESXi650-201712103-SG
esxi	lt	ESXi600-201711103-SG
esxi	lt	ESXi550-201709102-SG
vcsa	lt	6.5 U1d