Friday, April 10, 2009 3:50 PM
cmosby
Patches for critical VMWare vulnerability – SANS Internet Storm Center
Patches for critical VMWare vulnerability
Published: 2009-04-10,
Last Updated: 2009-04-10 19:09:37 UTC
by Stephen Hall (Version: 1)
0 comment(s) 
acebook 
witter
Our friends at VMWare have made the ISC aware of new patches for both VMWare Hosted products, and for ESX which relates to the ability to execute on the host server from a guest operating system.
The following releases have generally available patches:
- VMware Workstation 6.5.1 and earlier
- VMware Player 2.5.1 and earlier
- VMware ACE 2.5.1 and earlier
- VMware Server 2.0
- VMware Server 1.0.8 and earlier
- VMware Fusion 2.0.3 and earlier,
- VMware ESXi 3.5 without patch ESXe350-200904201-O-SG
- VMware ESX 3.5 without patch ESX350-200904201-SG
- VMware ESX 3.0.3 without patch ESX303-200904403-SG,
- VMware ESX 3.0.2 without patch ESX-1008421.
Depending on your version, your only option may be to upgrade rather than patch.
Steve Hall
ISC Handler
www.tarkie.net
Filed under: Security and Anti-Virus, Patch Management, Virtualization, Software Vulnerabilites