Wednesday, December 01, 2010 10:57 AM cmosby

VMWare Security Advisory – SANS Internet Storm Center

VMWare Security Advisory

Share |

Published: 2010-11-30,
Last Updated: 2010-11-30 13:24:19 UTC
by Joel Esler (Version: 1)

0 comment(s)

Today VMWare released a Security Advisory at this URL:

http://lists.vmware.com/pipermail/security-announce/2010/000111.html

It's an update for VMware ESX 4.1 without patch ESX410-201011001.

Here's the problem description right off of their website:

 a. Service Console OS update for COS kernel package.

    This patch updates the Service Console kernel to fix a stack
    pointer underflow issue in the 32-bit compatibility layer.

    Exploitation of this issue could allow a local user to gain
    additional privileges.

    The Common Vulnerabilities and Exposures project (cve.mitre.org)
    has assigned the name CVE-2010-3081 to this issue.

So if you are running this software in your enterprise, you'll want to take a look at this one.  Thanks to VMWare for this one.

-- Joel Esler | http://blog.joelesler.net | http://twitter.com/joelesler

Filed under: , , ,

Comments

No Comments