xcdegasp
22-09-2008, 14:13
VMware ESX / ESXi openwsman HTTP Basic Authentication Buffer Overflow
Critical: Moderately critical
Impact: DoS, System access
Where: From local network
Solution Status: Vendor Patch
OS: VMware ESX Server 3.x, VMware ESXi 3.x
Description:
VMware has issued an update for openwsman. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially to compromise a vulnerable system.
Solution:
Apply patches.
VMware ESXi 3.5:
Apply patch ESXe350-200808501-O-SG.
Download (http://download3.vmware.com/software/esx/ESXe350-200808501-O-SG.zip)
VMware ESX 3.5:
Apply patch ESX350-200808413-SG.
Download (http://download3.vmware.com/software/esx/ESX350-200808413-SG.zip)
Fonte: Secunia Advisory: SA31942 (http://secunia.com/advisories/31942/)
Critical: Moderately critical
Impact: DoS, System access
Where: From local network
Solution Status: Vendor Patch
OS: VMware ESX Server 3.x, VMware ESXi 3.x
Description:
VMware has issued an update for openwsman. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially to compromise a vulnerable system.
Solution:
Apply patches.
VMware ESXi 3.5:
Apply patch ESXe350-200808501-O-SG.
Download (http://download3.vmware.com/software/esx/ESXe350-200808501-O-SG.zip)
VMware ESX 3.5:
Apply patch ESX350-200808413-SG.
Download (http://download3.vmware.com/software/esx/ESX350-200808413-SG.zip)
Fonte: Secunia Advisory: SA31942 (http://secunia.com/advisories/31942/)