en

‫ VMware ESX Server / VirtualCenter JRE Multiple Vulnerabilties

IRCAD2012031775
ID: IRCAD2012031775
Release Date: 2012-03-09
Criticality level: Highly critical
Software:
VMware ESX Server 3.x
VMware VirtualCenter 2.x
Description:
VMware has acknowledged multiple vulnerabilities in ESX Server and VirtualCenter, which can be exploited by malicious users to disclose certain information and by malicious people to disclose potentially sensitive information, hijack a user's session, conduct DNS cache poisoning attacks, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system.
The vulnerabilities are reported in the following products and versions:
* VMware VirtualCenter 2.5 prior to "Update 6b"
* VMware ESX 3.5
Solution
Apply patch or update.
References:
VMSA-2012-0003:
Secunia:

The Wall

No comments
You need to sign in to comment