In association with heise online

« previous | next »
1 July 2009, 11:29

Security updates for VMWare-ESX

VMWare has released a security update for ESX-Server 3.5 to close a vulnerability in its Kerberos implementation. An input validation flaw in ASN.1 decoding function asn1_decode_generaltime meant that attackers could remotely crash the service or potentially inject and execute code.

Versions 4.0, 3.0.3, 3.0.2 and 2.5.5 are also vulnerable, but a patch for those versions is still in development. Kerberos is not activated by default in ESX server.

See also:

(djwm)

Add your comment

« previous | next »
Print version | Send by email
  • Share this article
  • digg this
  • submit to slashdot
  • post to delicious
  • StumbleUpon
  • submit to reddit

Price Insight Top 10

  1. Sapphire Radeon HD 5850
  2. Intel X25-M G2 Postville 80GB
  3. HTC Desire
  4. AVM Fritz!Box Fon WLAN 7390
  5. Intel Core i5-750
  6. MSI R5770 Hawk, Radeon HD 5770
  7. AMD Phenom II X4 955 (C3) Black Edition
  8. XFX Radeon HD 5850
  9. ASUS EAH5850/2DIS/1GD5
  10. Samsung EcoGreen F3 2000GB

The H

The H open source

The H Security

The H Internet Toolkit