VMware Security Advisory VMSA-2006-0001: VMware ESX Server Cross Site Scripting issue
726f9d276952b2f62ad214bd01f6b5a9ad22236f887256e9dee21bdc2411de2eVMware Security Advisory - Updated Tomcat and Java JRE packages have been made available for VMWare ESX 3.5. It is not a few updates either. Check out how many CVEs are covered. Judging by the CVE age, their turn around time on patching is quite sad.
bdca972198318dc99cbe922fcffca76537d29df7f9248d8962802a8c0051113fVMware Security Advisory - Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion, VMware Server, VMware VIX API, VMware ESX, VMware ESXi resolve critical security issues.
f098818652aa3effa44d42e138d658b7a0d4635486d171c6267c1242f5e9088eVMware Security Advisory - Several critical security vulnerabilities have been addressed in the newest releases of VMware's hosted product line. VMware Workstation versions 6.0.3 and earlier, VMware Player versions 2.0.3 and earlier, VMware ACE versions 2.0.3 and earlier, and VMware Fusion versions 1.1.1 and earlier are affected.
8c93656750d2594481c252544a4ae9731db471a2c2e561e33ca8a8215e9eea75VMware Security Advisory - VMware has released updates for pcre, net-snmp, and OpenPegasus.
05d3cc52d406c326ff1eab9dc8daa8b27e7db3e09c7914fad3295665ea9f50daVMware Security Advisory - VMware has released an updated libxml2 package that addresses a security issue.
ed141f3aa3ca6b4769627753a0c155bb551d3e39d4015808eca865ffbc63fa7aVMware Security Advisory - VMWare has addressed a folder traversal vulnerability, an insecure named pipe vulnerability, libpng, and various other bits and pieces.
42fe37cf6697bb1a04612faac0d018560285c356a5e5480bf92552485d44e572VMware Security Advisory - An updated service console package for e2fsprogs has been released for ESX Server versions 2.5.5 and 2.5.4.
f93228329d722fd07502d80cfef49213e5058226a673deb79b8e6fe003e8223fVMware Security Advisory - This patch fixes a flaw in how the aacraid SCSI driver checked IOCTL command permissions. This flaw might allow a local user on the service console to cause a denial of service or gain privileges. Alin Rad Pop of Secunia Research found a stack buffer overflow flaw in the way Samba authenticates remote users. A remote unauthenticated user could trigger this flaw to cause the Samba server to crash or to execute arbitrary code with the permissions of the Samba server. Chris Evans of the Google security research team discovered an integer overflow issue with the way Python's Perl-Compatible Regular Expression (PCRE) module handled certain regular expressions. If a Python application used the PCRE module to compile and execute untrusted regular expressions, it might be possible to cause the application to crash, or to execute arbitrary code with the privileges of the Python interpreter.
af87f71c42e6aa0e473a56dc13773e081ca262c64e1a2f396e37c8aeff184654VMware Security Advisory - There is an OpenPegasus PAM authentication buffer overflow and updated service console packages are available.
483d9d8f7624eaf97e973bf1a873f074836e2faa50411880fd4a74ea047d49c1VMware Security Advisory - Updated Tomcat and JRE security updates have been issued for VirtualCenter 2.0.2, ESX Server 3.0.2, and ESX 3.0.1.
d70ad50277bcd17773dae218bfe21840a7f7e10fd23649fa024d2109224a5aa9VMware Security Advisory - Alexander Sotirov from VMware Security Research discovered a buffer overflow vulnerability in the OpenPegasus Management server. Additionally, various service console packages have been updated.
be7e78ccb4f20704221fb7366e2271392d4aa26ec0d833801cc6ea984541e69fVMware Security Advisory - Updates have been released for arbitrary code execution, denial of service, and other various vulnerabilities in VMware.
f186f94a09bad9dba4b82b1daa59265b1954d193e8533587d0fe2348c1f58becVMware Security Advisory - Multiple denial of service issues along with a directory traversal vulnerability has been fixed.
a678b12e0b8ba30554e0498fe1d9269a513afd99bd97dd8c32508c86d25ff94eVMware Security Advisory - Multiple denial of service issues have been fixed relating to VMWare Workstation versions prior to 5.5.4, VMWare Player versions prior to 1.0.4, VMWare Server versions prior to 1.0.3, and VMWare ACE versions prior to 1.0.3.
4e9edc6f536d26eebc1b8cb1daf3fb3969448d225ed12e96bb21f79e58020a37VMware Security Advisory - ESX 3.0.1 and 3.0.0 patches address several security issues.
00501d3613c989dc8596886834f4aebb712f92e614164602fc56e3fbe61fd121VMware Security Advisory - The VMware ESX server has new patches released that address a slew of security issues.
cf9fc52da2246cff687a3a74cf8cee473029ab538b685bc029a694207623808fVMware Security Advisory - The VMware ESX server has new patches released that address a slew of security issues.
dc4dfe67a9b27831f0fffe3d8c6400d518a4c37b965e985d23a76ba126eb8357VMware Security Advisory - VMware VirtualCenter client 2.x before 2.0.1 Patch 1 (Build 33643) and 1.4.x before 1.4.1 Patch 1 (Build 33425), does not verify the server's X.509 certificate when creating an SSL session, which allows remote malicious servers to spoof valid servers via a man-in-the-middle attack.
dd8749ced22df23e5f0ba37882456145b8a99e2becc1c7456cdf60ab18621215VMware Security Advisory - A new update has been released for VMware ESX Server version 3.0.0. This patch addresses the AMD fxsave/restore security vulnerability.
78846882184d41c6d2c5180d83b747c2b360fed571e938081cf437e66aec9aaeVMware Security Advisory - A new update has been released for VMware ESX 2.0.2 versions prior to upgrade patch 2. This patch addresses vulnerabilities in Openssh, samba, Python, ucd-snmp, XFree86, and more.
9a66799b14690c41ec3ec055156a1779166c5ed73ed0a6f092e85b0596740011VMware Security Advisory - A new update has been released for VMware ESX 2.1.3 versions prior to upgrade patch 2. This patch addresses vulnerabilities in Openssh, samba, Python, ucd-snmp, XFree86, and more.
1440199717c94f0c4f1b7bd5c1fda07332cb78575e0f9e4297957683819670a4VMware Security Advisory - A new update has been released for VMware ESX versions 2.5.3 prior to upgrade patch 4. This patch addresses vulnerabilities in Openssh, samba, Python, ucd-snmp, XFree86, and more.
e684543f58081d1348c75166cbc7034f9d65df6dc03ffd4fd6c62d5e6cfa6ca9VMware Security Advisory - A new update has been released for VMware ESX versions 2.5.4 prior to upgrade patch 1. This patch addresses vulnerabilities in ucd-snmp, XFree86, an AMD fxsave/restore security flaw, some minor information leaks, and more.
3c5ba7597c91ed301fbec257901ba81d15b855241f3a9c647492727c59cd3151VMware Security Advisory - Three vulnerabilities have been addressed in VMWare ESX.
bbf9b9eec0618eef1cc22c20191021d149ef39888c4f7849cc0823e1fc498e76VMware Security Advisory VMSA-2006-0002 - VMware Server sensitive information lifetime issue.
9416d428754ffc0b448019d32ca7dc292291475a2ce00dba7c1f89d1be10eda9
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed