Secunia has listed a new advisory today, SA24636, for VMware ESX Server 2.x amd 3.x with the following description:
VMware has issued an update for VMware ESX Server. This fixes some vulnerabilities, which can be exploited by malicious, local users to gain escalated privileges, and by malicious people to overwrite arbitrary files, cause a DoS (Denial of Service) and potentially compromise a vulnerable system.
Additionally, VMware ESX Server was updated to protect against a guest kernel memory corruption, which could cause a DoS and an error within 64bit syscall instruction handling. This, in turn, could cause a panic in 64bit virtual machines.
Solution:
Apply patches. Please see vendor advisory for details.
Original Advisory:
http://kb.vmware.com/kb/5031800
http://kb.vmware.com/kb/5885387
http://kb.vmware.com/kb/6856573
http://kb.vmware.com/kb/3003211
http://kb.vmware.com/kb/3194055
http://kb.vmware.com/kb/3496682
http://lists.grok.org.uk/pipermail/full-disclosure/2007-March/053268.html
Visit the Secunia site here for more information.