VMware ESX / ESXi openwsman HTTP Basic Authentication Buffer Overflow - Secunia

Friday, September 19, 2008 2:45 PM cmosby

VMware ESX / ESXi openwsman HTTP Basic Authentication Buffer Overflow
Secunia Advisory:	SA31942
Release Date:	2008-09-19
Popularity:	274 views

Critical:	Moderately critical
Impact:	DoS System access
Where:	From local network
Solution Status:	Vendor Patch

OS:	VMware ESX Server 3.x VMware ESXi 3.x

Subscribe:	Instant alerts on relevant vulnerabilities

CVE reference:	CVE-2008-2234

Description: VMware has issued an update for openwsman. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially to compromise a vulnerable system. For more information: SA31410 Solution: Apply patches. VMware ESXi 3.5: Apply patch ESXe350-200808501-O-SG. http://download3.vmware.com/software/esx/ESXe350-200808501-O-SG.zip VMware ESX 3.5: Apply patch ESX350-200808413-SG. http://download3.vmware.com/software/esx/ESX350-200808413-SG.zip Original Advisory: VMSA-2008-0015: http://www.vmware.com/security/advisories/VMSA-2008-0015.html Other References: SA31410: http://secunia.com/advisories/31410/

No Comments

Chris Mosby at myITforum.com