Critical VMware vulnerabilities disclosed
VMware released a security bulletin[1] with moderate to critical vulnerabilities. The following products are affected:
- ESXi
- Workstation
- Fusion
The vulnerabilities may allow a guest to execute code on the host, may lead to a DDoS or information leakage (depending on the product and version). Patches are available.
[1] https://www.vmware.com/security/advisories/VMSA-2017-0006.html
Xavier Mertens (@xme)
ISC Handler - Freelance Security Consultant
PGP Key
Keywords: vmware
1 comment(s)
My next class:
Reverse-Engineering Malware: Advanced Code Analysis | Singapore | Nov 18th - Nov 22nd 2024 |
×
Diary Archives
Comments
In VMware words, "At this point VMware’s recommendation is that customers expedite updating, though need not take emergency measures like taking environments offline."
Anonymous
Mar 31st 2017
7 years ago