VMware ESX / ESXi Multiple Vulnerabilities
Last Update Date:
28 Jan 2011
Release Date:
17 Nov 2010
5694
Views
RISK: Medium Risk
Multiple vulnerabilities have been identified in VMware ESX/ESXi, which could be exploited by attackers to cause a denial of service or execute arbitrary code. These issues are caused by errors in COS kernel, likewisekrb5, likewiseopenldap, likewiseopen, and pamkrb5.
Impact
- Denial of Service
- Remote Code Execution
System / Technologies affected
- VMware ESX version 4.x
- VMware ESXi version 4.x
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- VMware ESX version 4.1 - Apply patches ESX410-201010401-SG and ESX410-201010419-SG :
- http://kb.vmware.com/kb/1027027 - VMware ESXi version 4.1 - Apply patch ESXi410-201010401-SG :
- http://kb.vmware.com/kb/1027753
Vulnerability Identifier
- CVE-2009-0844
- CVE-2009-0845
- CVE-2009-0846
- CVE-2009-4212
- CVE-2010-1321
- CVE-2010-0291
- CVE-2010-0307
- CVE-2010-0415
- CVE-2010-0622
- CVE-2010-1087
- CVE-2010-1088
- CVE-2010-1321
- CVE-2010-1437
Source
Related Link
Share with