Skip to main content

VMware Products Multiple Vulnerabilities

Last Update Date: 20 Jan 2014 11:01 Release Date: 20 Jan 2014 3819 Views

RISK: Medium Risk

TYPE: Operating Systems - VM Ware

TYPE: VM Ware

Multiple vulnerabilities have been identified in various VMware products, which could be exploited by attackers to cause denial of service and cross site request forgery.


Impact

  • Cross-Site Scripting
  • Denial of Service

System / Technologies affected

  • VMware Workstation 9.x prior to version 9.0.1
  • VMware Player 5.x prior to version 5.0.1
  • VMware Fusion 5.x prior to version 5.0.1
  • VMware ESXi 5.1 without patch ESXi510-201401101
  • VMware ESXi 5.0 without patch ESXi500-201310101
  • VMware ESXi 4.1 without patch ESXi410-201312401
  • VMware ESXi 4.0 without patch ESXi400-201310401
  • VMware ESX 4.1 without patch ESX410-201312401
  • VMware ESX 4.0 without patch ESX400-201310401
  • vCloud Director 5.1.x prior to version 5.1.3

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Update to a fixed version.

Vulnerability Identifier


Related Link