en

‫ VMware ESX / vCenter Server JRE Multiple Vulnerabilities

IRCAD2012031774
ID: IRCAD2012031774
Release Date: 2012-03-09
Criticality level: Highly critical
Software:
VMware ESX Server 4.x
VMware vCenter Server 4.x
Description:
VMware has acknowledged multiple vulnerabilities in VMware ESX and vCenter Server, which can be exploited by malicious users to disclose certain information and by malicious people to disclose potentially sensitive information, hijack a user's session, conduct DNS cache poisoning attacks, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system.
The vulnerabilities are reported in the following products and versions:
* VMware ESX 4.0
* VMware vCenter 4.0
Solution
Apply patches when available.
References:
VMSA-2012-0003:
Secunia:

The Wall

No comments
You need to sign in to comment