Davoud Teimouri

Virtualization & Datacenter

Category: Security News

Intel L1 Terminal Fault – VMM Vulnerability

What’s Intel L1 Terminal Fault? When a program attempts to access data in memory, the logical memory address is translated to a physical address by the hardware. Accessing a logical or linear address that is not mapped to a physical location on the hardware will result in a terminal fault. Once the fault is triggered, […]

453 total views, 3 views today

[News]: VMware Tools HGFS Vulnerability

VMware Tools HGFS Out-Of-Bounds Read Vulnerability VMware Tools contains an out-of-bounds read vulnerability in HGFS. Successful exploitation of this issue may lead to information disclosure or may allow attackers to escalate their privileges on guest VMs. Note: In order to be able to exploit this issue, file sharing must be enabled. The Common Vulnerabilities and Exposures […]

6,252 total views, 3 views today

VMware ESXi, Fusion and Workstation – Security Vulnerabilities

Security Vulnerabilities There is some security vulnerabilities that some VMware’s products are affected by those. The below VMware’s products are affected by the security vulnerabilities: VMware ESXi (ESXi) VMware vCenter Server VMware Fusion Pro / Fusion (Fusion) VMware Workstation Pro / Player (Workstation) Problems Description Out-of-bounds write vulnerability in SVGA VMware ESXi, Workstation & Fusion contain an out-of-bounds […]

6,853 total views, no views today

VMSA-2016-0015 – VMware Horizon View updates address directory traversal vulnerability

VMware has published important advisory security about VMware Horizon View and it’s recommended update your View servers to the new versions. Advisory ID: VMSA-2016-0015 Severity:    Important Synopsis:    VMware Horizon View updates address directory traversal vulnerability Issue date:  2016-10-06 Updated on:  2016-10-06 (Initial Advisory) CVE number:  CVE-2016-7087 Summary VMware Horizon View updates address directory traversal vulnerability. […]

1,024 total views, no views today

Security vulnerability CVE-2016-0701, Horizon 6 and Horizon Client

VMware has released a KB (Security vulnerability CVE-2016-0701, Horizon 6 and Horizon Client-2145144) for customers that they are using VMware Horizon 6 about security issue on OpenSSL. OpenSSL 1.0.2 through 1.0.2e contain the vulnerability CVE-2016-0701 (see https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0701 for more information). This vulnerability can be exploited when DHE cipher suites are used. Note that ECDHE cipher suites […]

612 total views, no views today

VMware Security Advisory – June 2016 – 1

VMware Security Advisory VMware has released two security advisories about NSX and vRealize Log Insight: Advisory ID: VMSA-2016-0007 VMware Security Advisory Synopsis:    VMware NSX and vCNS product updates address a critical information disclosure vulnerability   Issue date:  2016-06-09 Updated on:  2016-06-09 (Initial Advisory) CVE number:  CVE-2016-2079   1. Summary      VMware NSX and […]

406 total views, 1 views today

VMware Security Advisory May-June 2016

VMware has announced some security advisories about VMware products and the security advisories addresses the security issues. VMSA-2016-0006 VMware Security Advisory   Advisory ID: VMSA-2016-0006 Synopsis:    VMware vCenter Server updates address an important cross-site              scripting issue   Issue date:  2016-05-24 Updated on:  2016-05-24 (Initial Advisory) CVE number:  CVE-2016-2078 […]

542 total views, no views today

VMware Client Integration Plugin – Critical Security Issue

Critical security issue is detected on VMware Client Integration Plugin (To access a virtual machine’s console in the vSphere Web Client, you must install the Client Integration Plug-in) and VMware released a security advisory (VMSA-2016-0004) about this security issue. The below products have been affected by this issue: vCenter Server 6 before 6 U2 vCenter […]

1,917 total views, no views today

CVE-2015-7547: glibc getaddrinfo stack-based buffer overflow

VMware has published new KB about “CVE-2015-7547: glibc getaddrinfo stack-based buffer overflow” and all VMware Datacenter products have been affected. There is no fix for ESXi 5.5 and ESXi 6.0 and VMware engineers are preparing new patch for addressing this issue. You can find more information on this link: 2144032 Update: The new ESXi patch has […]

1,746 total views, 2 views today

Teimouri.net © 2012 Frontier Theme