Monday, October 06, 2008 4:43 PM cmosby

VMware ESX Server Sun Java JDK / JRE Multiple Vulnerabilities - Secunia

 
VMware ESX Server Sun Java JDK / JRE Multiple Vulnerabilities
Secunia Advisory: SA32180
Release Date: 2008-10-06
Popularity: 276 views

Critical:
Highly critical
Impact: Security Bypass
Exposure of system information
Exposure of sensitive information
DoS
System access
Where: From remote
Solution Status: Unpatched

OS: VMware ESX Server 3.x

Subscribe: Instant alerts on relevant vulnerabilities

CVE reference: CVE-2008-3103
CVE-2008-3104
CVE-2008-3105
CVE-2008-3106
CVE-2008-3107
CVE-2008-3108
CVE-2008-3109
CVE-2008-3110
CVE-2008-3111
CVE-2008-3112
CVE-2008-3113
CVE-2008-3114
CVE-2008-3115


Description:
VMware has acknowledged some vulnerabilities in VMware ESX Server, which can be exploited by malicious people to bypass certain security restrictions, disclose system information or potentially sensitive information, cause a DoS (Denial of Service), or compromise a vulnerable system.

For more information:
SA31010

The vulnerabilities affect versions 3.0.1, 3.0.2, 3.0.3, and 3.5.

Solution:
Patches are reportedly pending release.

Do not follow untrusted links or browse untrusted websites.

Original Advisory:
http://www.vmware.com/security/advisories/VMSA-2008-0016.html

Other References:
SA31010:
http://secunia.com/advisories/31010/
Filed under: , , ,

Comments

No Comments