VMware ESX/ESXi Server Multiple Vulnerabilities
Last Update Date:
4 Jun 2012
Release Date:
1 Feb 2012
5298
Views
RISK: High Risk
TYPE: Servers - Other Servers
Multiple vulnerabilities have been identified in VMware ESX/ESXi Server, which can be exploited by malicious, local users to disclose potentially sensitive and system information, bypass certain security restrictions, cause a DoS (Denial of Service), and gain escalated privileges, by malicious people with physical access to disclose certain system information, and by malicious people to disclose sensitive information, conduct spoofing and cross-site scripting attacks, cause a DoS, and compromise a vulnerable system.
Impact
- Cross-Site Scripting
- Denial of Service
- Elevation of Privilege
- Remote Code Execution
- Security Restriction Bypass
- Information Disclosure
- Spoofing
System / Technologies affected
- VMware ESX Server 4.x
- VMware ESXi 3.x
- VMware ESXi 4.x
- VMware ESXi 5.x
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
Vulnerability Identifier
- CVE-2009-3560
- CVE-2009-3720
- CVE-2010-0547
- CVE-2010-0787
- CVE-2010-1634
- CVE-2010-2059
- CVE-2010-2089
- CVE-2010-3493
- CVE-2010-4649
- CVE-2011-0695
- CVE-2011-0711
- CVE-2011-0726
- CVE-2011-1015
- CVE-2011-1044
- CVE-2011-1078
- CVE-2011-1079
- CVE-2011-1080
- CVE-2011-1093
- CVE-2011-1163
- CVE-2011-1166
- CVE-2011-1170
- CVE-2011-1171
- CVE-2011-1172
- CVE-2011-1182
- CVE-2011-1494
- CVE-2011-1495
- CVE-2011-1521
- CVE-2011-1573
- CVE-2011-1576
- CVE-2011-1577
- CVE-2011-1593
- CVE-2011-1678
- CVE-2011-1745
- CVE-2011-1746
- CVE-2011-1763
- CVE-2011-1776
- CVE-2011-1780
- CVE-2011-1936
- CVE-2011-2022
- CVE-2011-2192
- CVE-2011-2213
- CVE-2011-2482
- CVE-2011-2491
- CVE-2011-2492
- CVE-2011-2495
- CVE-2011-2517
- CVE-2011-2519
- CVE-2011-2522
- CVE-2011-2525
- CVE-2011-2689
- CVE-2011-2694
- CVE-2011-2901
- CVE-2011-3378
Source
Related Link
Share with