VMware Products Multiple Vulnerabilities

Impact

• Cross-Site Scripting
• Denial of Service
• Elevation of Privilege
• Remote Code Execution
• Information Disclosure

System / Technologies affected

• VMware vCenter Server 4.x
• VMware vSphere Update Manager 4.x
• VMware ESX Server 4.x
• VMware ESXi 4.x
• Mware vCenter Operations Manager (vCOps) 5.x

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

• Apply Security Patch.

Vulnerability Identifier

• CVE-2009-5029
• CVE-2009-5064
• CVE-2010-0830
• CVE-2010-2761
• CVE-2010-4180
• CVE-2010-4252
• CVE-2010-4410
• CVE-2011-0014
• CVE-2011-1020
• CVE-2011-1089
• CVE-2011-1833
• CVE-2011-2484
• CVE-2011-2496
• CVE-2011-2699
• CVE-2011-3188
• CVE-2011-3209
• CVE-2011-3363
• CVE-2011-3597
• CVE-2011-4108
• CVE-2011-4109
• CVE-2011-4110
• CVE-2011-4128
• CVE-2011-4132
• CVE-2011-4324
• CVE-2011-4325
• CVE-2011-4576
• CVE-2011-4577
• CVE-2011-4609
• CVE-2011-4619
• CVE-2011-3563
• CVE-2011-5035
• CVE-2012-0497
• CVE-2012-0498
• CVE-2012-0499
• CVE-2012-0500
• CVE-2012-0501
• CVE-2012-0502
• CVE-2012-0503
• CVE-2012-0504
• CVE-2012-0505
• CVE-2012-0506
• CVE-2012-0507
• CVE-2012-0508
• CVE-2012-0551
• CVE-2012-1711
• CVE-2012-1713
• CVE-2012-1716
• CVE-2012-1717
• CVE-2012-1718
• CVE-2012-1719
• CVE-2012-1720
• CVE-2012-1721
• CVE-2012-1722
• CVE-2012-1723
• CVE-2012-1724
• CVE-2012-1725
• CVE-2012-1726
• CVE-2012-0050
• CVE-2012-0060
• CVE-2012-0061
• CVE-2012-0207
• CVE-2012-0815
• CVE-2012-0841
• CVE-2012-0864
• CVE-2012-1569
• CVE-2012-1573
• CVE-2012-1583
• CVE-2012-2110
• CVE-2011-5057
• CVE-2012-0391
• CVE-2012-0392
• CVE-2012-0393
• CVE-2012-0394

Source

• Secunia
• VMware

Related Link

• http://secunia.com/advisories/50479/
• http://secunia.com/advisories/50476/
• http://secunia.com/advisories/50473/
• http://www.vmware.com/security/advisories/VMSA-2012-0013.html