VMware ESX Server Multiple Vulnerabilities
Last Update Date:
28 Jan 2011
Release Date:
18 Jun 2008
4659
Views
RISK: Medium Risk
Multiple vulnerabilities have been identified in VMware ESX Server, which could be exploited by remote attackers to bypass security restrictions, disclose sensitive information, cause a denial of service, or execute arbitrary commands and scripting code. These issues are caused by errors in Tomcat and JRE.
Impact
- Denial of Service
- Remote Code Execution
- Security Restriction Bypass
- Information Disclosure
System / Technologies affected
- VMware ESX Server version 3.x
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- Apply patch ESX350-200806404-SG :
http://download3.vmware.com/software/esx/ESX350-200806404-SG.zip
Vulnerability Identifier
- CVE-2007-5232
- CVE-2007-5236
- CVE-2007-5237
- CVE-2007-5238
- CVE-2007-5239
- CVE-2007-5240
- CVE-2007-5274
- CVE-2007-5333
- CVE-2007-5342
- CVE-2007-5461
- CVE-2007-5689
- CVE-2007-6286
- CVE-2008-0657
- CVE-2008-1185
- CVE-2008-1186
- CVE-2008-1187
- CVE-2008-1188
- CVE-2008-1189
- CVE-2008-1190
- CVE-2008-1191
- CVE-2008-1192
- CVE-2008-1193
- CVE-2008-1194
- CVE-2008-1195
- CVE-2008-1196
Source
Share with