SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   VMware Vendors:   VMware
VMware Lets Local Users Gain Privileges or Cause Denial of Service Conditions on the Host System
SecurityTracker Alert ID:  1018718
SecurityTracker URL:  http://securitytracker.com/id/1018718
CVE Reference:   CVE-2007-4496, CVE-2007-4497, CVE-2007-5618   (Links to External Site)
Updated:  Mar 18 2008
Original Entry Date:  Sep 20 2007
Impact:   Denial of service via local system, Root access via local system
Fix Available:  Yes  Vendor Confirmed:  Yes  

Description:   Some vulnerabilities were reported in VMware. A local user on a guest operating system can obtain elevated privileges on the host operating system. A local user on a guest operating system can cause denial of service conditions on the target system.

A local user with administrative privileges on a guest operating system can trigger a memory corruption error in a host process and potentially execute arbitrary code on the target system [CVE-2007-4496].

A local user on a guest operating system can cause a host process to become unresponsive or crash [CVE-2007-4497].

A local user can exploit an unquoted Windows search path in the Authorization service and other services to execute arbitrary code with elevated privileges [CVE-2007-5618].

VMware ESX 2.0.2, 2.1.3, 2.5.3, 2.5.4, 3.0.0, and 3.0.1 are affected. VMware ESX 3.0.2 is not affected.

VMware ACE 1.0.3 and 2.0.0 are affected. VMware Server 1.0.3 is affected. VMware Player 1.0.4 and 2.0.0 are affected. VMware Workstation 5.5.4 and 6.0.0 are affected.

Rafal Wojtczvk of McAfee reported these vulnerabilities.

Impact:   A local user on a guest operating system can obtain elevated privileges on the host operating system.

A local user on a guest operating system can cause denial of service conditions on the target system.

Solution:   The vendor has issued the following fixes.

ESX
---
VMware ESX 3.0.1 Download Patch Bundle ESX-8258730
http://www.vmware.com/support/vi3/doc/esx-8258730-patch.html
md5sum a06d0e36e403b0fe6bc6fbc76220a86d

VMware ESX 3.0.0 Download Patch Bundle ESX-4809553
http://www.vmware.com/support/vi3/doc/esx-4809553-patch.html
md5sum cd363526aab5fa6c45bf2509cb5ae500

NOTE: ESX 3.0.0 is nearing its End-of-life (10/05/2007) users
should upgrade to at least 3.0.1 and preferably the newest
release available.

VMware ESX 2.5.4 upgrade to patch 10 (Build# 53326)
VMware ESX 2.5.3 upgrade to patch 13 (Build# 52488)
VMware ESX 2.1.3 upgrade to patch 8 (Build# 53228)
VMware ESX 2.0.2 upgrade to patch 8 (Build# 52650)

NOTE: ESX 3.0.2 is not affected by this issue

Hosted products
---------------
VMware Workstation 6.0.0 upgrade to version 6.0.1 (Build# 55017)
VMware Workstation 5.5.4 upgrade to version 5.5.5 (Build# 56455)
VMware Player 2.0.0 upgrade to version 2.0.1 (Build# 55017)
VMware Player 1.0.4 upgrade to version 1.0.5 (Build# 56455)
VMware Server 1.0.3 upgrade to version 1.0.4 (Build# 56528)
VMware ACE 2.0.0 upgrade to version 2.0.1 (Build# 55017)
VMware ACE 1.0.3 upgrade to version 1.0.4 (Build# 54075)

Vendor URL:  www.vmware.com/ (Links to External Site)
Cause:   Not specified

Message History:   None.


 Source Message Contents

Subject:  [Full-disclosure] VMSA-2007-0006 Critical security updates for all

This is a multi-part message in MIME format.
--------------040200060407040901060008
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 8bit

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- - -------------------------------------------------------------------
                   VMware Security Advisory

Advisory ID:       VMSA-2007-0006
Synopsis:          Critical security updates for all supported
                   versions of VMware ESX Server, VMware Server,
                   VMware Workstation, VMware ACE, and
                   VMware Player

Issue date:        2007-09-18
Updated on:        2007-09-18

CVE numbers:       CVE-2007-2446 CVE-2007-2447 CVE-2007-0494
                   CVE-2007-2442 CVE-2007-2443 CVE-2007-2798
                   CVE-2007-0061 CVE-2007-0062 CVE-2007-0063
                   CVE-2007-4059 CVE-2007-4155 CVE-2007-4496
                   CVE-2007-4497 CVE-2007-1856 CVE-2006-1174
                   CVE-2006-4600 CVE-2004-0813 CVE-2007-1716
                   CVE-2006-3619 CVE-2006-4146
- - -------------------------------------------------------------------

1. Summary:

Updated versions of all supported hosted products and all ESX 2x
products and patches for ESX 30x address critical security updates.

Service Console security updates for samba, bind, krb5, vixie-cron,
shadow-utils, openldap, pam, gcc, and gdb packages.

2. Relevant releases:

VMware Workstation 6.0.0
VMware Player 2.0.0
VMware ACE 2.0.0

VMware Workstation prior to 5.5.5
VMware Player prior to 1.0.5
VMware Server prior to 1.0.4
VMware ACE prior to 1.0.4

VMware ESX 3.0.2 without patches ESX-1001725 ESX-1001731 ESX-1001726
                                 ESX-1001727 ESX-1001728 ESX-1001729
                                 ESX-1001730

VMware ESX 3.0.1 without patches ESX-8258730 ESX-1001213 ESX-1001691
                                 ESX-1001723 ESX-1001214 ESX-1001692
                                 ESX-1001693 ESX-1001694 ESX-8253547
                                 ESX-8567382

VMware ESX 3.0.0 without patches ESX-4809553 ESX-1001204 ESX-1001206
                                 ESX-1001212 ESX-1001205 ESX-1001207
                                 ESX-1001208 ESX-1001209 ESX-1001210
                                 ESX-1001211

VMware ESX 2.5.4 prior to upgrade patch 10 (Build# 53326)
VMware ESX 2.5.3 prior to upgrade patch 13 (Build# 52488)
VMware ESX 2.1.3 prior to upgrade patch  8 (Build# 53228)
VMware ESX 2.0.2 prior to upgrade patch  8 (Build# 52650)

3. Problem description:

Problems addressed by these patches:

I    Arbitrary code execution and denial of service vulnerabilities

     This release fixes a security vulnerability that could allow a
     guest operating system user with administrative privileges to cause
     memory corruption in a host process, and thus potentially execute
     arbitrary code on the host. (CVE-2007-4496)

     This release fixes a denial of service vulnerability that could
     allow a guest operating system to cause a host process to become
     unresponsive or exit unexpectedly. (CVE-2007-4497)

     Thanks to Rafal Wojtczvk of McAfee for identifying and reporting
     these issues.

     ESX
     ---
     VMware ESX 3.0.1 Download Patch Bundle ESX-8258730
     http://www.vmware.com/support/vi3/doc/esx-8258730-patch.html
     md5sum a06d0e36e403b0fe6bc6fbc76220a86d

     VMware ESX 3.0.0 Download Patch Bundle ESX-4809553
     http://www.vmware.com/support/vi3/doc/esx-4809553-patch.html
     md5sum cd363526aab5fa6c45bf2509cb5ae500

     NOTE: ESX 3.0.0 is nearing its End-of-life (10/05/2007) users
     should upgrade to at least 3.0.1 and preferably the newest
     release available.

     VMware ESX 2.5.4 upgrade to patch 10 (Build# 53326)
     VMware ESX 2.5.3 upgrade to patch 13 (Build# 52488)
     VMware ESX 2.1.3 upgrade to patch  8 (Build# 53228)
     VMware ESX 2.0.2 upgrade to patch  8 (Build# 52650)

     NOTE: ESX 3.0.2 is not affected by this issue

     Hosted products
     ---------------
     VMware Workstation 6.0.0 upgrade to version 6.0.1 (Build# 55017)
     VMware Workstation 5.5.4 upgrade to version 5.5.5 (Build# 56455)
     VMware Player      2.0.0 upgrade to version 2.0.1 (Build# 55017)
     VMware Player      1.0.4 upgrade to version 1.0.5 (Build# 56455)
     VMware Server      1.0.3 upgrade to version 1.0.4 (Build# 56528)
     VMware ACE         2.0.0 upgrade to version 2.0.1 (Build# 55017)
     VMware ACE         1.0.3 upgrade to version 1.0.4 (Build# 54075)

II   Hosted products DHCP security vulnerabilities addressed

     This release fixes several vulnerabilities in the DHCP server
     that could enable a specially crafted packets to gain system-level
     privileges. (CVE-2007-0061, CVE-2007-0062, CVE-2007-0063)

     Thanks to Neel Mehta and Ryan Smith of the IBM Internet Security
     Systems X-Force for discovering and researching these
     vulnerabilities.

     Hosted products
     ---------------
     VMware Workstation 6.0.0 upgrade to version 6.0.1 (Build# 55017)
     VMware Workstation 5.5.4 upgrade to version 5.5.5 (Build# 56455)
     VMware Player      2.0.0 upgrade to version 2.0.1 (Build# 55017)
     VMware Player      1.0.4 upgrade to version 1.0.5 (Build# 56455)
     VMware Server      1.0.3 upgrade to version 1.0.4 (Build# 56528)
     VMware ACE         2.0.0 upgrade to version 2.0.1 (Build# 55017)
     VMware ACE         1.0.3 upgrade to version 1.0.4 (Build# 54075)

III  Windows based hosted product vulnerability in
     IntraProcessLogging.dll and vielib.dll.

     This release fixes a security vulnerability that could allow a
     malicious remote user to exploit the library file
     IntraProcessLogging.dll to overwrite files in a system.
     (CVE-2007-4059)

     This release fixes a security vulnerability that could allow a
     malicious remote user to exploit the library file vielib.dll to
     overwrite files in a system. (CVE-2007-4155)

     Thanks to the Goodfellas Security Research Team for discovering and
     researching these vulnerabilities.

     Hosted products
     ---------------
     VMware Workstation 6.0.0 upgrade to version 6.0.1 (Build# 55017)
     VMware Workstation 5.5.4 upgrade to version 5.5.5 (Build# 56455)
     VMware Player      2.0.0 upgrade to version 2.0.1 (Build# 55017)
     VMware Player      1.0.4 upgrade to version 1.0.5 (Build# 56455)
     VMware Server      1.0.3 upgrade to version 1.0.4 (Build# 56528)
     VMware ACE         2.0.0 upgrade to version 2.0.1 (Build# 55017)
     VMware ACE         1.0.3 upgrade to version 1.0.4 (Build# 54075)


IV  Escalation of privileges on Windows hosted systems

     This release fixes a security vulnerability in which Workstation
     was starting registered Windows services in an insecure manner.
     This vulnerability could allow a malicious user to escalate user
     privileges.

     Thanks to Foundstone for discovering this vulnerability.

     Hosted products
     ---------------
     VMware Workstation 6.0.0 upgrade to version 6.0.1 (Build# 55017)
     VMware Workstation 5.5.4 upgrade to version 5.5.5 (Build# 56455)
     VMware Player      2.0.0 upgrade to version 2.0.1 (Build# 55017)
     VMware Player      1.0.4 upgrade to version 1.0.5 (Build# 56455)
     VMware Server      1.0.3 upgrade to version 1.0.4 (Build# 56528)
     VMware ACE         2.0.0 upgrade to version 2.0.1 (Build# 55017)
     VMware ACE         1.0.3 upgrade to version 1.0.4 (Build# 54075)

V    Potential denial of service using VMware Player

     This release fixes a problem that prevented VMware Player from
     launching. This problem was accompanied by the error message VMware
     Player unrecoverable error: (player) Exception 0xc0000005 (access
     violation) has occurred.

     Hosted products
     ---------------
     VMware Player      2.0.0 upgrade to version 2.0.1 (Build# 55017)
     VMware Player      1.0.4 upgrade to version 1.0.5 (Build# 56455)

VI   ESX Service Console updates

a.   Service console package Samba, has been updated to address the
     following issues:

     Various bugs were found in NDR parsing, used to decode MS-RPC
     requests in Samba. A remote attacker could have sent carefully
     crafted requests causing a heap overflow, which may have led to the
     ability to execute arbitrary code on the server. (CVE-2007-2446)

     Unescaped user input parameters were being passed as arguments to
     /bin/sh. A remote, authenticated, user could have triggered this
     flaw and executed arbitrary code on the server. Additionally, this
     flaw could be triggered by a remote unauthenticated user if Samba
     was configured to use the non-default username map script option.
     (CVE-2007-2447)

     Thanks to the Samba developers, TippingPoint, and iDefense for
     identifying and reporting these issues.

     Note: These issues only affect the service console network, and are
     not remote vulnerabilities for ESX Server hosts that have been set
     up with the security best practices provided by VMware.
     http://www.vmware.com/resources/techresources/726

     ESX
     ---
     VMware ESX 3.0.1 Download Patch Bundle ESX-1001213
     http://www.vmware.com/support/vi3/doc/esx-1001213-patch.html
     md5sum 4e942e5b47f90654696910fb8b10b144

     VMware ESX 3.0.0 Download Patch Bundle ESX-1001204
     http://www.vmware.com/support/vi3/doc/esx-1001204-patch.html
     md5sum 08bfdec038ea900c72f04e8d50b2db62

     NOTE: ESX 3.0.0 is nearing its End-of-life (10/05/2007) users
     should upgrade to at least 3.0.1 and preferably the newest
     release available

     VMware ESX 2.5.4 prior to upgrade patch 10 (Build# 53326)
     VMware ESX 2.5.3 prior to upgrade patch 13 (Build# 52488)
     VMware ESX 2.1.3 prior to upgrade patch  8 (Build# 53228)
     VMware ESX 2.0.2 prior to upgrade patch  8 (Build# 52650)

     NOTE: ESX 3.0.2 is not affected by this issue

b.   Updated bind package for the service console fixes a flaw with the
     way ISC BIND processed certain DNS query responses.

     ISC BIND (Berkeley Internet Name Domain) is an implementation of
     the DNS (Domain Name System) protocols. Under some circumstances, a
     malicious remote user could launch a Denial-of-Service attack on
     ESX Server hosts that had enabled DNSSEC validation.
     (CVE-2007-0494)

     Note: These issues only affect the service console network, and are
     not remote vulnerabilities for ESX Server hosts that have been set
     up with the security best practices provided by VMware.
     http://www.vmware.com/resources/techresources/726

     ESX
     ---
     VMware ESX 3.0.2 Download Patch Bundle ESX-1001725
     http://www.vmware.com/support/vi3/doc/esx-1001725-patch.html
     md5sum 75aa49eecec2e84eb41a4c26683d4c7a

     VMware ESX 3.0.1 Download Patch Bundle ESX-1001691
     http://www.vmware.com/support/vi3/doc/esx-1001691-patch.html
     md5sum e288a71c4953aa6724ce53879c663f81

     VMware ESX 3.0.0 Download Patch Bundle ESX-1001206
     http://www.vmware.com/support/vi3/doc/esx-1001206-patch.html
     md5sum bd552eb70624164067039525941ce82a

     NOTE: ESX 3.0.0 is nearing its End-of-life (10/05/2007) users
     should upgrade to at least 3.0.1 and preferably the newest
     release available

     VMware ESX 2.5.4 prior to upgrade patch 10 (Build# 53326)
     VMware ESX 2.5.3 prior to upgrade patch 13 (Build# 52488)
     VMware ESX 2.1.3 prior to upgrade patch  8 (Build# 53228)
     VMware ESX 2.0.2 prior to upgrade patch  8 (Build# 52650)

c.   This patch provides updated service console package krb5 update.

     The Common Vulnerabilities and Exposures project (cve.mitre.org)
     assigned the names CVE-2007-2442, CVE-2007-2443, and CVE-2007-2798
     to these security issues.

     Thanks to Wei Wang of McAfee Avert Labs discovered these
     vulnerabilities.

     Note: The VMware service console does not provide the kadmind
     binary, and is not affected by these issues, but a update has been
     provided for completeness.

     ESX
     ---
     VMware ESX 3.0.2 Download Patch Bundle ESX-1001731
     http://www.vmware.com/support/vi3/doc/esx-1001731-patch.html
     md5sum c349b83065f5b06cee34bae90a5a01b3

     VMware ESX 3.0.1 Download Patch Bundle ESX-1001723
     http://www.vmware.com/support/vi3/doc/esx-1001723-patch.html
     md5sum 9a31d1718d6c063cf978305b84637c40

     VMware ESX 3.0.0 Download Patch Bundle ESX-1001212
     http://www.vmware.com/support/vi3/doc/esx-1001212-patch.html
     md5sum 2bc08369d3410fa59d353e45830ae9f5

     NOTE: ESX 3.0.0 is nearing its End-of-life (10/05/2007) users
     should upgrade to at least 3.0.1 and preferably the newest
     release available

     VMware ESX 2.5.4 prior to upgrade patch 10 (Build# 53326)
     VMware ESX 2.5.3 prior to upgrade patch 13 (Build# 52488)
     VMware ESX 2.1.3 prior to upgrade patch  8 (Build# 53228)
     VMware ESX 2.0.2 prior to upgrade patch  8 (Build# 52650)

d.   Service console update for vixie-cron

     This patch provides an updated service console package vixie-cron.
     Cron is a standard UNIX daemon that runs specified programs at
     scheduled times.

     A denial of service issue was found in the way vixie-cron verified
     crontab file integrity. A local user with the ability to create a
     hardlink to /etc/crontab could potentially prevent vixie-cron from
     executing certain system cron jobs. (CVE-2007-1856)

     Thanks to Raphael Marichez for identifying this issue.

     ESX
     ---
     VMware ESX 3.0.1 Download Patch Bundle ESX-1001214
     http://www.vmware.com/support/vi3/doc/esx-1001214-patch.html
     md5sum 1e63db1cc7605830b16306a35bccd878

     VMware ESX 3.0.0 Download Patch Bundle ESX-1001205
     http://www.vmware.com/support/vi3/doc/esx-1001205-patch.html
     md5sum e6b818cf885d5fd5f93d33b27051df83

     NOTE: ESX 3.0.0 is nearing its End-of-life (10/05/2007) users
     should upgrade to at least 3.0.1 and preferably the newest
     release available

     NOTE: ESX 3.0.2 and ESX 2.x are not affected by this issue.

e.   Service console update for shadow-utils

     This patch provides an updated shadow-utils package.  A new
     user's mailbox, when created, could have random permissions for a
     short period. This could enable a local malicious user to
     read or modify the mailbox. (CVE-2006-1174)

     ESX
     ---
     VMware ESX 3.0.2 Download Patch Bundle ESX-1001726
     http://www.vmware.com/support/vi3/doc/esx-1001726-patch.html
     md5sum ac55c65ddc2142a292648765e9dcb583

     VMware ESX 3.0.1 Download Patch Bundle ESX-1001692
     http://www.vmware.com/support/vi3/doc/esx-1001692-patch.html
     md5sum 27edbac467107cc1fe6c78a839ce2144

     VMware ESX 3.0.0 Download Patch Bundle ESX-1001207
     http://www.vmware.com/support/vi3/doc/esx-1001207-patch.html
     md5sum acad9bce49ac9398ab1ee502980b49cb

     NOTE: ESX 3.0.0 is nearing its End-of-life (10/05/2007) users
     should upgrade to at least 3.0.1 and preferably the newest
     release available

f.  Service console update for OpenLDAP

     This patch provides a updated OpenLDAP package. A flaw could
     allow users with selfwrite access to modify the distinguished
     name of any user, instead of being limited to modify only
     their own distinguished name. (CVE-2006-4600)

     ESX
     ---
     VMware ESX 3.0.2 Download Patch Bundle ESX-1001727
     http://www.vmware.com/support/vi3/doc/esx-1001727-patch.html
     md5sum bd137cbf65b20dae3aaf422a559f92a1

     VMware ESX 3.0.1 Download Patch Bundle ESX-1001693
     http://www.vmware.com/support/vi3/doc/esx-1001693-patch.html
     md5sum a11191b59761b6afb68ea73e9e6456d0

     VMware ESX 3.0.0 Download Patch Bundle ESX-1001208
     http://www.vmware.com/support/vi3/doc/esx-1001208-patch.html
     md5sum f3e26b66682191e024a9b094a063837f

     NOTE: ESX 3.0.0 is nearing its End-of-life (10/05/2007) users
     should upgrade to at least 3.0.1 and preferably the newest
     release available

     NOTE: ESX 2.x doesen't ship OpenLDAP

g.   Service console update for PAM

     This patch provides an updated PAM package A vulnerability was
     found that could allow console users with access to certain device
     files to cause damage to recordable CD drives. Certain file
     permissions have now been modified to disallow access.
     (CVE-2004-0813)

     A flaw was found with console device permissions. It was possible
     for various console devices to retain ownership of the previoius
     console user after logging out, which could result in leakage of
     information to an unauthorized user. (CVE-2007-1716)

     ESX
     ---
     VMware ESX 3.0.2 Download Patch Bundle ESX-1001728
     http://www.vmware.com/support/vi3/doc/esx-1001728-patch.html
     md5sum a33f0cc5b1cfc68683c4d8643c52775c

     VMware ESX 3.0.1 Download Patch Bundle ESX-1001694
     http://www.vmware.com/support/vi3/doc/esx-1001694-patch.html
     md5sum 6ce5d882d6fe9e714ce48f719cefb182

     VMware ESX 3.0.0 Download Patch Bundle ESX-1001209
     http://www.vmware.com/support/vi3/doc/esx-1001209-patch.html
     md5sum 1c7adad00a20f9e7ba1fbe1663ad4d66

     NOTE: ESX 3.0.0 is nearing its End-of-life (10/05/2007) users
     should upgrade to at least 3.0.1 and preferably the newest
     release available

h.   Service console update for GCC

     This patch provides security fixes for the service console GNU
     Compiler Collection (GCC) packages that include C, C++, Java,
     Fortran 77, Objective C, and Ada 95 GNU compilers and related
     support libraries.

     A flaw was found in the fastjar utility that could potentially
     allow a malicious user to create a JAR file which, if unpacked
     using fastjar, could write to any file that an authorized user had
     write access to. (CVE-2006-3619)


     ESX
     ---
     VMware ESX 3.0.2 Download Patch Bundle ESX-1001729
     http://www.vmware.com/support/vi3/doc/esx-1001729-patch.html
     md5sum 1b2d32dc805971703bb2c8c047c6144a

     VMware ESX 3.0.1 Download Patch Bundle ESX-8253547
     http://www.vmware.com/support/vi3/doc/esx-8253547-patch.html
     md5sum 90702b54fb6197a6680f141ad8c435fa

     VMware ESX 3.0.0 Download Patch Bundle ESX-1001210
     http://www.vmware.com/support/vi3/doc/esx-1001210-patch.html
     md5sum c1fb76ac529966bf65cc98cc5e5e88bb

     NOTE: ESX 3.0.0 is nearing its End-of-life (10/05/2007) users
     should upgrade to at least 3.0.1 and preferably the newest
     release available

i.   Service Console update for GDB

     This patch provides a security fix for the service console GNU
     debugger (GDB).  Various vulnerabilities were found in GDB. These
     vulnerabilities may allow a malicious user to deceive a user into
     loading debugging information into GDB, enabling the execution of
     arbitrary code with the privileges of the user. (CVE-2006-4146)

     ESX
     ---
     VMware ESX 3.0.2 Download Patch Bundle ESX-1001730
     http://www.vmware.com/support/vi3/doc/esx-1001730-patch.html
     md5sum 7f91450c665065c9998a635bbe4c42db

     VMware ESX 3.0.1 Download Patch Bundle ESX-8567382
     http://www.vmware.com/support/vi3/doc/esx-8567382-patch.html
     md5sum 230a7c7ceec8bd581110ef9303a480fc

     VMware ESX 3.0.0 Download Patch Bundle ESX-1001211
     http://www.vmware.com/support/vi3/doc/esx-1001211-patch.html
     md5sum 3f30f6a1a28e6ff4c10d5e44864d327e

     NOTE: ESX 3.0.0 is nearing its End-of-life (10/05/2007) users
     should upgrade to at least 3.0.1 and preferably the newest
     release available

4. Solution:

Please review the Patch notes for your product and version and verify
the md5sum of your downloaded file.

  ESX 3.0.1, ESX 3.0.0 patches and md5sums are listed in the
  above sections

  ESX 2.5.4
  http://www.vmware.com/support/esx25/doc/esx-254-200708-patch.html
  md5sum 8f29f906e0f3c8605a203f914f36b3d1

  ESX 2.5.3
  http://www.vmware.com/support/esx25/doc/esx-253-200708-patch.html
  md5sum 32ba19deb7af268ab357710145f8659b

  NOTE: ESX 2.5.3 is nearing its End-of-life (10/05/2007) users
  should upgrade to at least 2.5.4 and preferably the newest
  release available.

  ESX 2.1.3
  http://www.vmware.com/support/esx21/doc/esx-213-200708-patch.html
  md5sum 32f9f87a99c5c801dd61492a9d91dfe2

  NOTE: ESX 2.1.3 is nearing its End-of-life (12/15/2007) users
  should upgrade to at least 2.5.4 and preferably the newest
  release available.

  ESX 2.0.2
  http://www.vmware.com/support/esx2/doc/esx-202-200708-patch.html
  md5sum f36bb75b51f79e4ba2a2f01a71c3bb08

  NOTE: ESX 2.0.2 is nearning its End-of-life (12/15/2007) users
  should upgrade to at least 2.5.4 and preferably the newest
  release available.

  Workstation 6.0.1
  -----------------
  http://www.vmware.com/download/ws/

  Windows release notes:
  http://www.vmware.com/support/ws6/doc/releasenotes_ws6.html
  Linux release notes:
  http://www.vmware.com/support/ws6/doc/releasenotes_ws6.html

  Workstation 5.5.5
  -----------------
  http://www.vmware.com/download/ws/ws5.html

  Windows release notes:
  http://www.vmware.com/support/ws55/doc/releasenotes_ws55.html
  Linux release notes:
  http://www.vmware.com/support/ws55/doc/releasenotes_ws55.html

  Server 1.0.4
  ------------
  http://www.vmware.com/download/server/
  Release notes:
  http://www.vmware.com/support/server/doc/releasenotes_server.html

  ACE 2.0.1 and 1.0.4
  -------------------
  http://www.vmware.com/download/ace/

  Windows Release notes:
  http://www.vmware.com/support/ace2/doc/releasenotes_ace2.html

  Player 2.0.1 and 1.0.5
  ----------------------
  http://www.vmware.com/download/player/

  Release notes Player 1.x:
  http://www.vmware.com/support/player/doc/releasenotes_player.html
  Release notes Player 2.0
  http://www.vmware.com/support/player2/doc/releasenotes_player2.html

5. References:

  CVE numbers
  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2446
  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2447
  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0494
  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2442
  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2443
  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2798
  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0061
  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0062
  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0063
  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4059
  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4155
  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4496
  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4497
  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1856
  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1174
  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4600
  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0813
  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1716
  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3619
  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4146


- - -------------------------------------------------------------------
6. Contact:

E-mail list for product security notifications and announcements:
http://lists.vmware.com/cgi-bin/mailman/listinfo/security-announce

This Security Advisory is posted to the following lists:

  * security-announce@lists.vmware.com
  * bugtraq@securityfocus.com
  * full-disclosure@lists.grok.org.uk

E-mail:  security@vmware.com

http://www.vmware.com/security

VMware Security Response Policy
http://www.vmware.com/vmtn/technology/security/security_response.html

General Support Lifecycle Policy
http://www.vmware.com/support/policies/eos.html

VMware Infrastructure Support Life Cycle Policy
http://www.vmware.com/support/policies/eos_vi.html

Copyright 2007 VMware Inc. All rights reserved.


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)

iD8DBQFG8depS2KysvBH1xkRCLHoAJ9sJyVIqG7nGjbLlCo1d7ogan7SQwCcC6Wj
ng+NNXJenc6G4YXR0xce8U4=
=ElrO
-----END PGP SIGNATURE-----

--------------040200060407040901060008
Content-Type: application/pgp-encrypted;
 name="VMSA-2007-0006.txt.asc"
Content-Transfer-Encoding: base64
Content-Disposition: inline;
 filename="VMSA-2007-0006.txt.asc"
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--------------040200060407040901060008
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
--------------040200060407040901060008--

 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC