Virtualization Technology News and Information
Article
RSS
VMware ESX Server Multiple Security Updates

Secunia has listed a new advisory today, SA24636, for VMware ESX Server 2.x amd 3.x with the following description:

VMware has issued an update for VMware ESX Server. This fixes some vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges, and by malicious people to overwrite arbitrary files, cause a DoS (Denial of Service) and potentially compromise a vulnerable system.

Additionally, VMware ESX Server was updated to protect against a guest kernel memory corruption, which could cause a DoS and an error within 64bit syscall instruction handling. This, in turn, could cause a panic in 64bit virtual machines.

Solution:
Apply patches. Please see vendor advisory for details.

Original Advisory:
http://kb.vmware.com/kb/5031800
http://kb.vmware.com/kb/5885387
http://kb.vmware.com/kb/6856573
http://kb.vmware.com/kb/3003211
http://kb.vmware.com/kb/3194055
http://kb.vmware.com/kb/3496682

http://lists.grok.org.uk/pipermail/full-disclosure/2007-March/053268.html

Visit the Secunia site here for more information.

Published Friday, March 30, 2007 5:54 AM by David Marshall
Filed under:
Comments
There are no comments for this post.
To post a comment, you must be a registered user. Registration is free and easy! Sign up now!
Calendar
<March 2007>
SuMoTuWeThFrSa
25262728123
45678910
11121314151617
18192021222324
25262728293031
1234567