Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: VMware security update SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
VMware security update

Our friends over at VMware have released their first security bulletin of the year.  The vulnerability is a privilege escalation issue in VMware Tools in Windows guests.  Affected products include ESXi, Workstation (versions prior to 11.1.2, version 12 is not affected), Player (prior to 7.1.2), and Fusion (prior to 7.1.2, version 8 is not affected).  This is not a guest escape and does not impact the host OS.

 

References:

http://www.vmware.com/security/advisories/VMSA-2016-0001.html

---------------
Jim Clausing, GIAC GSE #26
jclausing --at-- isc [dot] sans (dot) edu

I will be teaching next: Reverse-Engineering Malware: Malware Analysis Tools and Techniques - SANS Baltimore Fall 2020

Jim

416 Posts
ISC Handler
Jan 11th 2016

Sign Up for Free or Log In to start participating in the conversation!